Wu said that Scam Sniffer issued a security alert after users reported being redirected to a fake Pudgy Penguins website when accessing a news portal in Singapore. An investigation revealed that this is part of a larger malicious advertising campaign. The attack works as follows: malicious ads are served through the Google ad network, ads load suspicious code from Adloox, the code checks if you have a web3 wallet, and if detected, redirects you to a fake website named pudqypenguin. Currently, the attack is only targeting Pudgy Penguins users, but this method can easily be applied to other projects, so please be sure to check the URL carefully. How users can protect themselves: enable ad blockers, use a separate browser for crypto, carefully check URLs before connecting wallets, etc.
