Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency

Attackers are taking advantage of certain SEO techniques to direct users to phishing sites for wallet apps like Metamask and exchange Coinbase, Kraken. According to Netskope, these websites are created in Google Sites and Microsoft Azure, tricking users into providing personal information, and allowing bad entities to extract their money from these services.
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency 4

Netskope, an online security company specializing in SEO techniques and copy sites, has discovered a new type of phishing scam. According to a report from the company, throughout 2022, hackers used blogs as a tool to disseminate links to phishing sites.

In these blogs, attackers post links with SEO content to rank high in search engine queries. This means the links have high views, making them believe they are being linked to the real cryptocurrency website. However, the link directs the user to a phishing site similar to crypto sites, such as the one for Metamask.

Other sites are also mimicking exchanges like Coinbase, Gemini, and Kraken.

Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency 5

These phishing sites are hosted on Google Sites or use Microsoft Azure, designed to deceive users and obtain personal information in two different ways. The first way is to directly collect the privacy seeds in the user’s wallet by prompting them to enter this data. This is the method the phishing site Metamask is currently using.

Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency 6

The second way is to get users’ account information in the exchanges that phishing attacks have attacked. When the user enters the information, the websites will give an error and prompt them to contact the support operator to get more information about the user and successfully “steal” their money. Netskope states:

“Netskope strongly recommends users to never enter credentials after clicking on a link. Instead, always navigate directly to the site you are trying to log in to. For organizations, we also recommend using a secure web gateway, capable of detecting and blocking phishing in real time.”

The phishing scam is not a new scam in the crypto world. Binance detected and warned of a major SMS-related online scam in February.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Harold

CoinCu News

Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency

Attackers are taking advantage of certain SEO techniques to direct users to phishing sites for wallet apps like Metamask and exchange Coinbase, Kraken. According to Netskope, these websites are created in Google Sites and Microsoft Azure, tricking users into providing personal information, and allowing bad entities to extract their money from these services.
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency 10

Netskope, an online security company specializing in SEO techniques and copy sites, has discovered a new type of phishing scam. According to a report from the company, throughout 2022, hackers used blogs as a tool to disseminate links to phishing sites.

In these blogs, attackers post links with SEO content to rank high in search engine queries. This means the links have high views, making them believe they are being linked to the real cryptocurrency website. However, the link directs the user to a phishing site similar to crypto sites, such as the one for Metamask.

Other sites are also mimicking exchanges like Coinbase, Gemini, and Kraken.

Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency 11

These phishing sites are hosted on Google Sites or use Microsoft Azure, designed to deceive users and obtain personal information in two different ways. The first way is to directly collect the privacy seeds in the user’s wallet by prompting them to enter this data. This is the method the phishing site Metamask is currently using.

Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency 12

The second way is to get users’ account information in the exchanges that phishing attacks have attacked. When the user enters the information, the websites will give an error and prompt them to contact the support operator to get more information about the user and successfully “steal” their money. Netskope states:

“Netskope strongly recommends users to never enter credentials after clicking on a link. Instead, always navigate directly to the site you are trying to log in to. For organizations, we also recommend using a secure web gateway, capable of detecting and blocking phishing in real time.”

The phishing scam is not a new scam in the crypto world. Binance detected and warned of a major SMS-related online scam in February.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Harold

CoinCu News