According to TechFlow, on December 25, Scam Sniffer issued a security alert that users were redirected to a fake URL of Pudgy Penguins when visiting a Singapore news portal.
Investigations revealed that this was part of a larger malicious advertising campaign. The attack was delivered through the Google ad network, and the ads loaded suspicious code from Adloox, checking whether the user had a web3 wallet.
If a web3 wallet is detected, the user will be redirected to a fake website called pudqypenguin. Currently the attack is only targeting Pudgy Penguins users, but this method can be used for other projects, reminding users to check the URL carefully.