Blockchain security company Halborn has warned its users of the latest phishing emails doing the rounds.
A cybersecurity company has issued warnings over a new phishing attack that targets users of the popular crypto wallet MetaMask. In a July 28 post that was published by Halborn’s technical education specialist Luis Lubeck, the active phishing attack used emails to target MetaMask users and trick them into giving out their private passphrase.
The company analyzed scam emails it got in late July to warn the users of the new scam. Halborn said that at an initial glance, the email appears authentic with a MetaMask header and logo. It comes with messages that tell users to comply with know-your-customer (KYC) regulations and how to validate their wallets.
Nevertheless, Halborn also said that there are many red flags within the message. Many spelling errors and a fake sender’s email address were two of the most obvious. Furthermore, a phony domain known as metamaks.auction was used to send these phishing emails.
Phishing is described as a social engineering attack using targeted emails to lure victims into revealing more personal data or clicking links to malicious sites that try to steal cryptocurrency.
There was also no customization in the message, the company noted, which is another warning sign. Hovering over the call to action button shows the malicious link to a phony site which prompts users to enter their seed phrases before redirecting to MetaMask to empty their crypto wallets.
Halborn, which raised over $90 million in a Series A round in July, was launched in 2019 by ethical hackers offering blockchain and cyber security services.
Buy Crypto NowMetaMask Updated Its Platform To Combat Phishing
In June 2022, Halborn researchers discovered an incident where a user’s private keys could be found encrypted on a disk in a compromised computer. MetaMask patched its extension versions 10.11.3 and later on, it followed the discovery.
Nevertheless, there was no mention of the new email phishing threat on MetaMask’s Twitter feed at the time of publication. In the past week, Celsius users were warned of a phishing attack after the leak of client emails by a third-party vendor employee.
In late July, security researchers warned about a new malware strain known as Luca Stealer appearing in the wild. The information stealer has been written in the Rust programming language and targets Web3 networks such as crypto wallets. Similar malware known as Mars Stealer was discovered targeting MetaMask wallets in February.