The popular cryptocurrency wallet MetaMask warned its customers of a new phishing bot that attempts to get their seed phrases. According to the team, the fraud tries to lead users to a so-called ”instant support” portal where they are prompted to enter information into a Google Docs form.
The New Scam
MetaMask – a project focused on Ethereum-based tools and infrastructure – tweeted today (May, 3rd) revealing a new fraud that attempts to harm users of the platform. The organization indicated that the scam occurs as ”normal” and ”asks for your recovery passphrase,” but it is all a hoax, and users should be extra careful.
The phishing bot seeks to guide users to an ”instant support” portal, and then it prompts them to enter personal information into a Google Docs form. To shred any doubt, MetaMask informed that it does not have a Google-based backing system. The team advised users to reach for support via the ”Get help” option in the MetaMask application itself.
The cryptocurrency wallet also advised its customers to notify them about the phishing bot as the MetaMask app has this option on its platform.
Despite the alert, numerous users have complained that they have been attacked before. One of the people showed his frustration on Tweeter and raised concerns on how to return his tokens:
”So I assume we cannot retrieve all our tokens right? I assume a lot of people have been robbed yesterday because of that…”
The More Users, The More Attacks
As reported by CryptoPotato, MetaMask has seen real progress recently. The wallet is now being used by more than 5 million people – a substantial milestone, showing the growth in the entire ecosystem and especially in DeFi.
Interestingly enough, MetaMask finds huge popularity in southern countries where many people experience problems with the local banking system and see the wallet as a safe and trustworthy option. Some of the nations in the top 10 list include India, Indonesia, Vietnam, and Nigeria.
But with the increased total of MetaMask users comes the problem with security as it is hard to protect a number of customers from the wit of hackers.
The new phishing bot is not the first attempt to scam people out of their crypto.
Previously, the company behind one of the most commonly used hardware wallets, Ledger, saw its database leaked, revealing the personal information of many users.