News

Beware: Scammers Exploit Bookmark Trick to Steal from Friendtech Users!

Key Points:

  • Scammers exploit JavaScript bookmarks on Friendtech users to steal passwords and Privy tokens.
  • Users’ ft accounts and associated funds face imminent threat of theft.
  • Similar scams prevalent in Discord serve as a stark warning for all online platforms.
A concerning security threat has emerged as malicious scripts target the popular website Friendtech users.

These scripts, written in JavaScript, are the crafty handiwork of scammers aiming to deceive unsuspecting Friendtech users into adding a nefarious bookmark to their browsers.

The scheme operates as follows: once a user unwittingly adds the malicious bookmark to their browser, the JavaScript code springs into action upon accessing the ft site. It then launches a sinister attempt to pilfer sensitive data, including passwords, with a specific focus on ft’s two-factor authentication (2FA) credentials, as illustrated in Figure 1. Additionally, these malevolent scripts seek to compromise the tokens linked to Privy, an embedded wallet used by ft, as depicted in Figure 2. This puts the user’s ft account and any associated funds in grave jeopardy, as the scammers endeavor to gain unauthorized access and control.

Malicious JavaScript Tactics Targeting Friend.tech

What makes this threat even more alarming is that the method employed is far from novel. The usage of such malicious bookmarks has been increasingly prevalent in schemes aimed at compromising Discord accounts. It serves as a stark reminder that similar tactics can easily be deployed in various online platforms and websites, putting a wide range of accounts and assets at risk of theft and misuse.

For Friendtech users, vigilance is of the utmost importance. It is imperative to scrutinize bookmarks, browser extensions, and any suspicious activity meticulously.

Ensuring robust online security practices and promptly removing any dubious bookmarks are vital steps in safeguarding your ft account and the assets associated with it. Stay informed and cautious, as cyber threats continue to evolve and adapt in their quest to exploit vulnerabilities and capitalize on unsuspecting victims.

DISCLAIMER: The information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Annie

Championing positive change through finance, I've dedicated over eight years to sustainability and environmental journalism. My passion lies in uncovering companies that make a real difference in the world and guiding investors towards them. My expertise lies in navigating the world of sustainable investing, analyzing ESG (Environmental, Social, and Governance) criteria, and exploring the exciting field of impact investing. "Invest in a better future," I often say. That's the driving force behind my work at Coincu – to empower readers with knowledge and insights to make investment decisions that create a positive impact.

Recent Posts

Dogecoin Price Reaches 5-Month High: Here’s What’s Driving The Increase 

The Dogecoin price has reached a five-month high, and investors should buy the Ethereum token…

2 hours ago

Best Cryptos to Invest in Now: Don’t Miss Out on These Potential Game-Changers!

Crypto isn’t just for the tech-savvy anymore; it’s for everyone. As more people jump into…

3 hours ago

Trust Wallet CEO Backs Web3, Plus Wallet’s Top-Tier Encryption Ensures Secure Asset Access Amid Crypto Liquidation Hits $277M

Read how Plus Wallet’s top-tier ensures secure, unified digital asset management. Get the latest updates…

6 hours ago

Former Alameda CEO Will Now Serve 2-Year Sentence

Former Alameda CEO Caroline Ellison reported to a Connecticut federal prison on November 7 after…

7 hours ago

Degen Rollup Key Issue Forces Possible Chain Restart

Degen Rollup Key Issue: Conduit seized Degen’s L3 private key, causing 54 hours of downtime…

7 hours ago

This website uses cookies.