Tech

Cryptocurrency Scammers Use ‘Wallet Drainer’ Ploy on Google and X Ads and Earn $59 Million in Phishing Scams: Report

Published

8 months ago

on

In a worrying trend that has lasted since last year, cybercriminals have orchestrated a series of phishing scams to steal millions of dollars in cryptocurrency assets via deceptive ads on major platforms, including Google and X. Discovered by cybersecurity experts by ScamSniffer, these scammers are employing a sinister tool known as “wallet drainers” to carry out their nefarious plans in phishing scams.

Disclosed in a recent blog post, ScamSniffer reveals that the initial detection of this wallet drainer occurred within Google Search Ad Phishing, and then made its way into a series of X-Phishing Ads shared by ZachXBT. A recent examination of ads in X feeds showed that nearly 60% of phishing ads used this specific drain.

We are now on WhatsApp. Click on joint.

Between March and December, ScamSniffer diligently monitored 10,072 phishing websites, linking them to the theft of nearly $58.98 million from more than 63,000 victims over the previous nine months through an analysis of on-chain data associated with addresses of phishing.

Understanding wallet drainers and their propagation

Wallet drainers work by tricking users into authorizing malicious transactions that drain assets from their cryptocurrency wallets. Typically, this occurs when users interact with misleading links embedded in deceptive advertisements, which are actually phishing scams.

Recent examples of these phishing scams using wallet emptying include a group of deceptive X ads called “Ordinals Bubbles” and fake links leading to popular crypto platforms like DeFiLlama and Lido. Notably, these phishing ads have become more sophisticated, incorporating redirect tricks that imitate official, legitimate domains and ultimately direct users to phishing websites.

The blog post highlights the versatility of these wallet drainers, stating: “Phishing scammers have implemented these tactics through various channels such as phishing ads, supply chain attacks, Discord phishing, spam comments and mentions on Twitter, Airdrop phishing , SimSwap attacks, DNS attacks, email phishing, etc., continuously targeting ordinary users with phishing attacks and causing significant resource losses.”

Fuente

Related Topics:

Leave a Reply

Your email address will not be published. Required fields are marked *

Información básica sobre protección de datos Ver más

  • Responsable: Miguel Mamador.
  • Finalidad:  Moderar los comentarios.
  • Legitimación:  Por consentimiento del interesado.
  • Destinatarios y encargados de tratamiento:  No se ceden o comunican datos a terceros para prestar este servicio. El Titular ha contratado los servicios de alojamiento web a Banahosting que actúa como encargado de tratamiento.
  • Derechos: Acceder, rectificar y suprimir los datos.
  • Información Adicional: Puede consultar la información detallada en la Política de Privacidad.

Trending

Exit mobile version