Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency
Attackers are taking advantage of certain SEO techniques to direct users to phishing sites for wallet apps like Metamask and exchange Coinbase, Kraken. According to Netskope, these websites are created in Google Sites and Microsoft Azure, tricking users into providing personal information, and allowing bad entities to extract their money from these services.
Netskope, an online security company specializing in SEO techniques and copy sites, has discovered a new type of phishing scam. According to a report from the company, throughout 2022, hackers used blogs as a tool to disseminate links to phishing sites.
In these blogs, attackers post links with SEO content to rank high in search engine queries. This means the links have high views, making them believe they are being linked to the real cryptocurrency website. However, the link directs the user to a phishing site similar to crypto sites, such as the one for Metamask.
Other sites are also mimicking exchanges like Coinbase, Gemini, and Kraken.
These phishing sites are hosted on Google Sites or use Microsoft Azure, designed to deceive users and obtain personal information in two different ways. The first way is to directly collect the privacy seeds in the user’s wallet by prompting them to enter this data. This is the method the phishing site Metamask is currently using.
The second way is to get users’ account information in the exchanges that phishing attacks have attacked. When the user enters the information, the websites will give an error and prompt them to contact the support operator to get more information about the user and successfully “steal” their money. Netskope states:
“Netskope strongly recommends users to never enter credentials after clicking on a link. Instead, always navigate directly to the site you are trying to log in to. For organizations, we also recommend using a secure web gateway, capable of detecting and blocking phishing in real time.”
The phishing scam is not a new scam in the crypto world. Binance detected and warned of a major SMS-related online scam in February.
DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.
Join CoinCu Telegram to keep track of news: https://t.me/coincunews
Follow CoinCu Youtube Channel | Follow CoinCu Facebook page
Harold
CoinCu News
Author
Scam Alert
Google Sites And Microsoft Azure Are Being Used To Steal Cryptocurrency
Attackers are taking advantage of certain SEO techniques to direct users to phishing sites for wallet apps like Metamask and exchange Coinbase, Kraken. According to Netskope, these websites are created in Google Sites and Microsoft Azure, tricking users into providing personal information, and allowing bad entities to extract their money from these services.
Netskope, an online security company specializing in SEO techniques and copy sites, has discovered a new type of phishing scam. According to a report from the company, throughout 2022, hackers used blogs as a tool to disseminate links to phishing sites.
In these blogs, attackers post links with SEO content to rank high in search engine queries. This means the links have high views, making them believe they are being linked to the real cryptocurrency website. However, the link directs the user to a phishing site similar to crypto sites, such as the one for Metamask.
Other sites are also mimicking exchanges like Coinbase, Gemini, and Kraken.
These phishing sites are hosted on Google Sites or use Microsoft Azure, designed to deceive users and obtain personal information in two different ways. The first way is to directly collect the privacy seeds in the user’s wallet by prompting them to enter this data. This is the method the phishing site Metamask is currently using.
The second way is to get users’ account information in the exchanges that phishing attacks have attacked. When the user enters the information, the websites will give an error and prompt them to contact the support operator to get more information about the user and successfully “steal” their money. Netskope states:
“Netskope strongly recommends users to never enter credentials after clicking on a link. Instead, always navigate directly to the site you are trying to log in to. For organizations, we also recommend using a secure web gateway, capable of detecting and blocking phishing in real time.”
The phishing scam is not a new scam in the crypto world. Binance detected and warned of a major SMS-related online scam in February.
DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.
Join CoinCu Telegram to keep track of news: https://t.me/coincunews
Follow CoinCu Youtube Channel | Follow CoinCu Facebook page
Harold
CoinCu News
Other Posts
Related Posts
News
