Etherscan, CoinGecko warn against ongoing MetaMask phishing attacks


Popular crypto analytics platforms Etherscan and CoinGecko have simultaneously issued an alert for an ongoing phishing attack on their platforms. The companies began investigating the attack after many users reported unusual MetaMask pop-ups requiring users to connect their crypto wallets to the site.

Based on the information revealed by the analytics companies, the recent phishing attack attempts to gain access to users’ money by requesting to integrate their encryption wallets using MetaMask once they have accessed the official websites.

Etherscan further revealed that the attackers were able to view phishing windows through third-party integration and advised investors to refrain from approving any transactions requested by MetaMask.

Pointing out the possible cause of the attack, @ Noedel19, a member of Crypto Twitter, linked the ongoing phishing attacks to the compromise of Coinzilla, an advertising and marketing agency, stating that “any site that uses Coinzilla Ads is at risk.”

CoinZilla source code hacked with phishing link. Source: @ Noedel19

The shared screenshots below show the auto-pop-up window from MetaMask requesting to connect to the link incorrectly described as a BoredC Yacht Club (NFT) offer.

The CoinGecko website displays a fake MetaMask pop-up window. Source: @ Noedel19

On May 4, the Cointelegraph warned readers even more about the rise in Ape phishing scams, which is further highlighted by recent warnings issued by Etherscan and CoinGecko.

While official approval from Coinzilla is still pending, @ Noedel19 suspects that all companies that have ad integration with Coinzilla remain at risk for similar attacks in which their users receive pop-ups for MetaMask integration.

As a primary means of damage control, Etherscan has disabled the inclusion of a third party harmed on its website.

Koinzilla has not yet responded to Quintelgraff’s request to comment.

Related: Bored Ape Yacht Club NFTs Stolen in Instagram Phishing Attack

The team behind BAYC recently warned investors against attack after hackers were found who had violated their official Instagram account.

As Quintelgraph reported on April 25, hackers were able to gain access to BAYC’s official Instagram account. The hackers then contacted BAYC’s Instagram followers and shared links to fake airdrops.

Users who connected their MetaMask wallets to the scam site were subsequently emptied of Ape’s NFT. Unapproved reports offer That about 100 NFTs were stolen during the phishing attack.