Cryptocurrency wallet provider MetaMask has warned users that a new phishing bot is trying to steal their first phishing scam.
In a tweet posted on Monday, MetaMask warned users that the bot was trying to direct users to a so-called “online support” portal, where they were asked to enter information into a Google Docs form.
The form asks for a recovery passphrase that can be used to recover user encryption wallets. MetaMask said it does not have a support system based on Google Docs and encouraged users to request support using the “get help” option in the MetaMask app itself to avoid scams.
MetaMask also encourages users to report fake imitations of the wallet and its services, noting that customers can do this in the app.
Despite the fact that MetaMask warned its users about phishing bots, it looks like some of the users have already been tricked, and the Twitter user replied: “So there is no way to get our token properly?”
Due to its popularity, MetaMask is one of the main targets for hackers and scammers. On Tuesday, the developer responsible for the ConsenSys wallet reported that it reached a record high of 5 million monthly active users.
Phishing attacks are a social engineering technique used by fraudsters to entice users to take action that reveals personal information or account information.
In December 2020, MetaMask detailed a “corrupt seed expression” in which a malicious website mimics the wallet space that the user is trying to install. The fake website creates an introductory phrase that allows scammers to control their wallet once it is installed.
Newbies are not the only victims of phishing scams: By the end of 2020, a hacker tricked Nexus Mutual founder Hugh Karp into converting nearly 370,000 Nexus Mutual (NXM) tokens worth $ 8 million into a wallet under their control.
Ledger users have also been flooded with phishing attempts, with two major hacks on the company’s servers leaking personal information, including email addresses, phone numbers, and even physical addresses.