Phishers are coming after MetaMask users in increasingly clever ways.
Cyber Security firm CipherTrace has issued a warning after noting a surge in reports over the past 24 hours of users funds being stolen by a malicious Chrome browser extension posing as popular crypto wallet MetaMask.
The warning was issued under the headline "ALERT: Malicious Crypto Browser Extension—Masked MetaMask" and reported the company had seen "an uptick of alerts and comments within the online cryptocurrency community of users’ funds being stolen."
In response to online criticism that MetaMask is not doing enough to steer its users away from potentially harmful websites and downloads, MetaMask’s Chief Product Officer Jacob Cantele asked Twitter what more the company should do?
“How can we improve? Currently we're warning in multiple places within the product, we maintain a phishing detector that warns about tens of thousands of malicious sites, we do regular security marketing campaigns, and we have legal resources to trying to get these sites removed.”
Links to fake MetaMask sites are being inadvertently reposted by cryptocurrency projects and reportedly show up frequently as Google Ads above the first result in Google searches for the term “metamask.”
Phishing warning? @Google is allowing a phisher to buy sponsored ads on their search results.