ChainCatcher message, Scam Sniffer issued a security alert, with users reporting that visiting a certain Singapore news portal will redirect to a fake URL of Pudgy Penguins. Investigation shows this is part of a larger malicious advertising campaign. The mechanism of the attack is as follows:
Malicious ads are delivered via the Google ad network
Ads load suspicious code from Adloox
Code checks if you have a web3 wallet
If detected, redirect to a fake website named pudqypenguin.
Currently, the attack only targets Pudgy Penguins users, but this method can easily be applied to other projects. Users are reminded to carefully check the URL.
How to protect yourself: Enable ad blockers; use a separate browser for crypto activities; carefully check the URL before connecting the wallet; install browser security extensions.