McBiblets, a member of the X community, identified phishing advertisements on Etherscan on April 8. These ads were found to lead to phishing websites, prompting warnings to users. Further investigation revealed that the same phishing advertisements were replicated on multiple well-known phishing websites.
Subsequently, the web3 anti-scam platform Scam Sniffer discovered that the phishing advertising had spread to key search engines such as Google, Bing, and DuckDuckGo, as well as the social media platform X. The scam involves allowing the scammer to withdraw funds to their personal wallet addresses without the user’s verification or authorization. So far, there is no substantial evidence of the scammers’ identities.
The phishing advisory comes at a time when the industry faces an increasing number of phishing schemes. Ethereum users have been particularly affected, with losses totaling $78 million in assets, including ETH and ERC20 tokens. Attackers often pretend to be reputable cryptocurrency organizations, luring unsuspecting individuals to phishing sites where their digital assets are stolen.