According to ShibDaily, a sophisticated phishing scam has emerged, targeting Web3 users by exploiting Google Ads to deceive cryptocurrency enthusiasts. Initially focusing on Pudgy Penguins NFT users, the scam highlights vulnerabilities in trusted ad networks and poses a broader threat to the crypto community. The scam was uncovered by ScamSniffer after a user reported being redirected to a fake Pudgy Penguins website via a Singapore news site. Security researchers traced the issue to malicious advertisements hosted on the Adloox tracking domain, distributed through Google Ads. These ads contained harmful scripts designed to target Web3 wallet users.
The malicious code scans browsers for Web3 wallets and redirects users to fraudulent sites like 'pudqypenguin[.]com' to steal wallet credentials. Although Pudgy Penguins users are the primary targets, researchers warn that the technique could easily be adapted to attack other NFT and crypto projects. Further investigation revealed that the scam exploits vulnerabilities in websites using Prebid.js, a popular header bidding library. If these sites utilize the Adloox analytics module, they risk inadvertently running malicious scripts through their ads, potentially leading to malware infections.
In response to the discovery, security researcher ZachXBT promptly alerted Adloox, resulting in the removal of the malicious JavaScript files from its content delivery network (CDN). To protect against such attacks, experts advise Web3 users to implement ad blockers, verify website URLs, and use separate browsers for cryptocurrency-related activities. Tools like ScamSniffer can help detect and prevent phishing attempts. As the crypto world continues to grow, users must remain vigilant against evolving threats, not just in the United States but globally. Recently, French regulators have become more combative against rising crypto scams, which a study revealed cost victims €500 million annually in the country alone. Scammers reportedly use social media, impersonation, and AI to promote fake investments. French authorities have blacklisted 5,000 platforms and blocked 350 sites so far.