ChainCatcher message, Scam Sniffer issues a security alert, with users reporting that visiting a certain Singapore news portal will be redirected to a fake URL for Pudgy Penguins. Investigation shows that this is part of a larger malicious advertising campaign. The attack works as follows:

  1. Malicious ads are delivered through the Google ad network

  2. Ads load suspicious code from Adloox

  3. Code review to check if you have a web3 wallet

  4. If detected, redirect to a fake website named pudqypenguin.

Currently, the attack only targets Pudgy Penguins users, but this method can easily be applied to other projects. Users are reminded to carefully check the URL.

How to protect yourself: Enable ad blockers; use a separate browser for crypto activities; carefully check the URL before connecting your wallet; install browser security extensions.