TLDR: Beware sites claiming to be airdrops of new tokens. We recently received a report regarding “basedbrett.claims” and “scotty-theai-io.web.app” offering airdrops and claims but actually stealing user funds.
Our Advice: Stay Away! These are Phishing websites meant to deprive you of your funds.
Fake Contract[BscScan]: 0x0000d169F98E078B60bFb09A69D145e72dBE0000
Keep your funds safe by protecting your wallet with the HashDit Chrome Extension!!
[https://chromewebstore.google.com/detail/hashdit/coegijljhiejhdodjbnlglffjomlbgmi]
#BTC #ETH #TrendingTopic #memecoin🚀🚀
How this phish works:
The sites are set up to resemble the original, with a similar name and layout.
Once the page loads they either automatically call the wallet connection dialogue or have you click to connect your wallet.
Once you connect they call a function CLAIM.
The idea is to make the user believe that they are claiming a token.
However if you observe the amount deducted, it's the entire wallet balance.
If you try to cancel the transaction, the site automatically retries the transaction to get the user to confirm it.
Closing the page and then rejecting the transaction is the only way to stop the dialogue.
The contract is unverified and any transactions will only lead to a loss of user funds.
Always #DYOR before transacting on any site.