{"id":32768,"date":"2020-12-03T13:18:52","date_gmt":"2020-12-03T11:18:52","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=32768"},"modified":"2025-08-28T10:21:15","modified_gmt":"2025-08-28T07:21:15","slug":"metamask-users-warned-of-surge-in-scams","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/metamask-users-warned-of-surge-in-scams\/","title":{"rendered":"MetaMask users warned of surge in scams"},"content":{"rendered":"<p>Analytical firm CipherTrace warned cryptocurrency holders of a surge in the past 24 hours in funds stolen through counterfeit MetaMask Ethereum wallets.<\/p>\n<p><!--more--><\/p>\n<blockquote class='twitter-tweet'>\n<p dir='ltr' lang='en'>ALERT: In the past 24 hours, we\u2019ve noted an uptick of comments within the online <a href='https:\/\/twitter.com\/hashtag\/cryptocurrency?src=hash&#038;ref_src=twsrc%5Etfw'>#cryptocurrency<\/a> community of users\u2019 funds being stolen via a Chrome browser extension <a href='https:\/\/twitter.com\/hashtag\/phishing?src=hash&#038;ref_src=twsrc%5Etfw'>#phishing<\/a> attack posing as cryptocurrency wallet and browser extension <a href='https:\/\/twitter.com\/hashtag\/MetaMask?src=hash&#038;ref_src=twsrc%5Etfw'>#MetaMask<\/a>. <a href='https:\/\/t.co\/yRjCjSTvFz'>https:\/\/t.co\/yRjCjSTvFz<\/a><\/p>\n<p>\u2014 CipherTrace (@ciphertrace) <a href='https:\/\/twitter.com\/ciphertrace\/status\/1334254054260740100?ref_src=twsrc%5Etfw'>December 2, 2020<\/a><\/p>\n<\/blockquote>\n<p><script async src='https:\/\/platform.twitter.com\/widgets.js' charset='utf-8'><\/script><\/p>\n<p>According to specialists, attackers advertise clones of the official MetaMask site and distribute a fake extension for the Google Chrome browser. If the client enters the data required to connect the wallet, all funds are withdrawn from their account.<\/p>\n<p>One user recounted on Twitter that a friend of his fell for a phishing site from Google&#8217;s search results.<\/p>\n<blockquote class='twitter-tweet'>\n<p dir='ltr' lang='en'>METAMASK SCAM!<br \/>A friend of mine got his account drained. He googled \u00abmetamask\u00bb, clicked on the 1st link (ad) that came up which prompted him to download the fake metamask plugin. As soon as he installed it everything from his account was drained. Share Retweet! <a href='https:\/\/t.co\/OO9tkq1N6k'>pic.twitter.com\/OO9tkq1N6k<\/a><\/p>\n<p>\u2014 Value-Trader (@AbizMind) <a href='https:\/\/twitter.com\/AbizMind\/status\/1332855856833159168?ref_src=twsrc%5Etfw'>November 29, 2020<\/a><\/p>\n<\/blockquote>\n<p><script async src='https:\/\/platform.twitter.com\/widgets.js' charset='utf-8'><\/script><\/p>\n<p>MetaMask representatives confirmed that Google is displaying attacker ads in search results. The wallet developers advised using only direct links and to be careful with information shown in search results.<\/p>\n<blockquote class='twitter-tweet'>\n<p dir='ltr' lang='en'>\ud83c\udfa3\ud83d\udea8 Phishing warning? \ud83c\udfa3\ud83d\udea8<a href='https:\/\/twitter.com\/Google?ref_src=twsrc%5Etfw'>@Google<\/a> is allowing a phisher to buy sponsored ads on their search results. When using crypto, try to use direct links, and if you need to use search, watch out for sponsored links! <a href='https:\/\/t.co\/Fx4WArcH80'>pic.twitter.com\/Fx4WArcH80<\/a><\/p>\n<p>\u2014 MetaMask (@metamask_io) <a href='https:\/\/twitter.com\/metamask_io\/status\/1334012407014834184?ref_src=twsrc%5Etfw'>December 2, 2020<\/a><\/p>\n<\/blockquote>\n<p><script async src='https:\/\/platform.twitter.com\/widgets.js' charset='utf-8'><\/script><\/p>\n<p>In response to criticism that MetaMask should do more to safeguard user security, Chief Product Officer Jacob Cantele asked the community what should be improved.<\/p>\n<blockquote class='twitter-tweet' data-conversation='none'>\n<p dir='ltr' lang='en'>How can we improve? Currently we\u2019re warning in multiple places within the product, we maintain a phishing detector that warns about tens of thousands of malicious sites, we do regular security marketing campaigns, and we have legal resources to trying to get these sites removed.<\/p>\n<p>\u2014 Jacob Cantele (hiring for MetaMask) \u27e0 \ud83e\udd8a <a href='https:\/\/twitter.com\/jacobcantele\/status\/1334193616756076546?ref_src=twsrc%5Etfw'>December 2, 2020<\/a><\/p>\n<\/blockquote>\n<p><script async src='https:\/\/platform.twitter.com\/widgets.js' charset='utf-8'><\/script><\/p>\n<blockquote>\n<p>&#8216;Currently we are issuing warnings in several places within the product, we maintain a phishing detector that warns about tens of thousands of malicious sites, we run regular security marketing campaigns, and we have legal resources to try to remove these sites&#8217;, wrote Cantele.<\/p>\n<\/blockquote>\n<p>Earlier, MetaMask representatives <a href=\"https:\/\/forklog.com\/en\/news\/metamask-surpasses-1-million-active-users-amid-defi-hype\">said<\/a> that the number of active wallet users surpassed 1 million.<\/p>\n<p>In July, developers released an updated version of the MetaMask browser extension with improved privacy and security options.<\/p>\n<p>Follow ForkLog news on <a href='https:\/\/twitter.com\/ForkLog' target='_blank' rel='nofollow noopener noreferrer'>Twitter<\/a>!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CipherTrace warned cryptocurrency holders about a spike in funds stolen in the last 24 hours through counterfeit MetaMask Ethereum wallets.<\/p>\n","protected":false},"author":1,"featured_media":32769,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1911,1154,1287],"class_list":["post-32768","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cipher-trace","tag-crimes","tag-metamask"],"aioseo_notices":[],"amp_enabled":true,"views":"19","promo_type":"1","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/32768","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=32768"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/32768\/revisions"}],"predecessor-version":[{"id":32770,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/32768\/revisions\/32770"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/32769"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=32768"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=32768"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=32768"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}