PANews December 25 report, the security team Scam Sniffer issued a security alert, reminding users to be vigilant against fraudulent activities conducted through counterfeit websites. Recently, a user was directed to a fake @pudgypenguins website via a news portal in Singapore. After investigation, it was found that this was part of a large-scale malicious advertising campaign. The specific process of the attack is as follows: malicious ads were placed through the Google ad network, loading suspicious code from Adloox, which checks whether the user has a Web3 wallet. If a wallet is detected, the user will be redirected to the counterfeit website pudqypenguin[.]com. Currently, the main target is users of @pudgypenguins, but this method can easily be adapted to other projects.
It is recommended that users take the following measures: enable ad blockers, use a separate browser to access cryptocurrency-related websites, verify the URL three times before connecting a wallet, and install the ScamSniffer plugin.