Phishing For Private Wallet Keys On Google Ads By DailyCoin - Investing.com

Phishing For Private Wallet Keys On Google Ads

• Phishing campaigns are carried out through Google (NASDAQ:) Ads.
• Hackers have stolen close to $500,000 in funds.
• Hackers have been promoting fake wallets such as Phantom or Metamask.

Promoting cryptocurrency products through social platforms is a two-way street. Hackers are taking advantage of those inexperienced in digital norms and siphoning funds worth thousands of dollars after gaining access to users’ private keys.

Google, the hacker’s middleman

Google instituted a ban on cryptocurrency ads in 2018 to prevent users from being scammed. However, in 2021 Google announced it would allow crypto wallets to run ads on the platform.

With Google offering access only to wallets, hackers have found a new way to extract users’ funds. A report by Check Point (NASDAQ:) Research highlights that hackers are running paid advertising and creating fake wallet look-alikes to obtain users’ private keys and exploit their wallets.

Attackers create paid advertisements for popular wallets, including MetaMask and Phantom. However, the domain URL name has an unnoticeable difference. Instead of the original “phantom.app,” hackers use “phantonn.app” which makes it very similar to the original. Moreover, the website is a 1 to 1 replica of the original wallet, but security is not guaranteed.

On The Flipside

• Google will not change their policy because they are generating additional revenue as keyword bids are increasing.

According to CPR, hackers have managed to subtract at least $500,000 using the paid advertising method in the past couple of days. More worrying is that hacking groups will try to leverage Google’s crypto wallet’s permission and increase their bids for keyword placements as more reports on Reddit and Twitter (NYSE:) address wallet phishing issues.

CPR advises users to check the wallet’s URL before clicking on the ad, as hacking methods have proven to be an effective way to steal users’ funds In addition, the group has also identified phishing activities directing users to fake decentralized exchanges such as Pancakeswap or where their private keys are revealed to bad actors.

Why You Should Care?

The hacking method is critical, especially for newcomers in the crypto space, who don’t have the necessary technical understanding to spot problems in the promoted URLs.

EMAIL NEWSLETTER

Join to get the flipside of crypto

Upgrade your inbox and get our DailyCoin editors’ picks 1x a week delivered straight to your inbox.

[contact-form-7] You can always unsubscribe with just 1 click.

Continue reading on DailyCoin

Disclaimer: Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. All CFDs (stocks, indexes, futures) and Forex prices are not provided by exchanges but rather by market makers, and so prices may not be accurate and may differ from the actual market price, meaning prices are indicative and not appropriate for trading purposes. Therefore Fusion Media doesn`t bear any responsibility for any trading losses you might incur as a result of using this data.

Fusion Media or anyone involved with Fusion Media will not accept any liability for loss or damage as a result of reliance on the information including data, quotes, charts and buy/sell signals contained within this website. Please be fully informed regarding the risks and costs associated with trading the financial markets, it is one of the riskiest investment forms possible.

Adblock test (Why?)

Phishing For Private Wallet Keys On Google Ads By DailyCoin - Investing.com
Read More