The Sandbox developers metaverse warned users about a phishing attack. The game’s representatives wrote about it in their blog.
On February 26, an unknown individual gained access to the workstation of one of the staff members and sent fraudulent emails to platform users.
The message imitated a notification of access to the metaverse and contained malicious links. If a user clicked it, phishing software would be installed on the computer, giving the attacker direct access to the device and all personal data.
Almost immediately after the incident was detected, security department staff sent a warning letter to potential phishing victims. The compromised computer was also reformatted, and the employee’s credentials were reset and changed.
The Sandbox added that the attacker had access only to users’ email addresses. No financial losses have been reported yet.
The metaverse representatives urged players to strengthen their security and use a reputable antivirus. They also advised against clicking on suspicious links.
In February, the non-custodial wallet MetaMask warned users about phishing attacks.