MetaMask warns of new phishing bot

[lovesmayfamilis]

MetaMask has warned of the emergence of a new phishing bot.
The developers declare that they do not work with Google Docs documents, and recommend immediately reporting any suspicious activity.
https://cointelegraph.com/news/metamask-warns-of-new-phishing-bot.

https://twitter.com/MetaMask/status/1389029404169314304?s=20

[Charles-Tim]

I read this news like a day ago, I could have brought it up here but thinking there are many phishing attempts of such brought up on this forum, but bringing it up here too on this forum might safe someone, but I am still always surprised that some people can go ahead entering their seed phrase online. Even if it is legit metamask wallet, they should know not to enter their seed phrase unless when receovering back their wallet.

The form asks for the secret recovery phrase that can be used to respawn users’ crypto wallets.

I hope people will be wise one day. And it is better to make use of mobile wallet, or desktop wallet more preferably than using web wallets that are most vulnerable to online attacks. Or someone should go safer and use offline wallet.

This kind of attack is not the first on web wallets and will not be the last.

[Insanerman]

This is really alarming when it comes to Metamask as their customer support is always active in twitter when someone has issues with either transaction or their platform in general. What adds to the risk is that there are tons of newbies that suddenly wants to try to invest in crypto and uses metamask as their first wallet and if ever that they aren't aware that this kind of schemes, regardless of being too obvious to be a scam, still exists. This is also the reason why I somehow spend a little time reporting such posts in twitter, as I know that it could be a little help to everyone on the platform.

[Upgrade00]

there are tons of newbies that suddenly wants to try to invest in crypto

Newbie, suddenly and investing should not normally go together, regardless of the sector the person wishes to invest in. The first step should be to gain knowledge on how best to invest or safely store your funds. If one misses this step and jumps to throw money in so as to get quick returns, they are very likely to lose out in the long run or fall for cheap scams such as this.

[OgNasty]

there are tons of newbies that suddenly wants to try to invest in crypto

Newbie, suddenly and investing should not normally go together, regardless of the sector the person wishes to invest in. The first step should be to gain knowledge on how best to invest or safely store your funds. If one misses this step and jumps to throw money in so as to get quick returns, they are very likely to lose out in the long run or fall for cheap scams such as this.

Maybe what you say is true, but how else would you explain the sudden rise in DOGE? It’s quite clear that the market is being inundated with newbie funds chasing gains. I have a few people I know who jumped into DOGE “because it’s so cheap compared to other coins” not knowing it’s one of the most expensive cryptos out there. We’re well into a period of foolishness and people should be made aware they’re jumping into a shark tank.

[Charles-Tim]

if they are legit they wont never ask for sensitive details such as seed phrase

I get your point, you are right, but any wallet that is web wallet can be compromised by hackers at anytime, the wallet domain can be compromised, this can happen to any web based platform.

[sheenshane]

Thanks for the head-up.

Newbies will always prone to this target because they'd lack knowledge towards keeping their crypto assets safe.  I can't imagine how they think that there's instant support for Metamask that can assist you when you have a problem, AFAIK, most decentralized wallets didn't have online support, and if there is, it could be from scammers.

This is very common for those online crypto wallets, not only Metamask, even Trustwallet before there's impersonating process from scammers.  The best thing to do is always verify those wallets that you wanted to use.  Scammers will always find a way to scam naive and people that lack knowledge in crypto and most of them are newbies, we should always care to share a warning like this.

[cryptoaddictchie]

I hope people will be wise one day. And it is better to make use of mobile wallet, or desktop wallet more preferably than using web wallets that are most vulnerable to online attacks. Or someone should go safer and use offline wallet.

This kind of attack is not the first on web wallets and will not be the last.

Thats right. Web wallet are kinda dangerous, that's why it's really advisable to use always desktop. I have a lot of mobile wallets and third party apps. I remember one time having a Web wallet for a token that is very strange and suspicious, luckily I didnt pursue it. Some reports that users were compromised.


Thanks for sharing, I highly doubt many will be victimised with the Google form style, metamask is big firm and will definitely utilise safe way for this not just a mere Google docs like most airdrops.

[xenon131]

~

They also stressed that.