Hackers have amassed over $580,000 from unsuspecting victims through an ongoing phishing and malware campaign using email addresses that imitate those of prominent Web3 companies, such as Cointelegraph, WalletConnect, and Token Terminal.
As of the delivery of the phishing emails, cryptocurrency investigator ZachXBT has identified a multichain address that has accrued more than $580,000 worth of stolen cryptocurrency on his Telegram channel.
The address contains a variety of 280 distinct cryptocurrency tokens, with Ether comprising 86% of the wallet’s holdings at the time of writing, or 227 ETH.
Additionally, WalletConnect informed X (previously Twitter) users of its awareness regarding the fraudulent email that encourages recipients to click on the harmful airdrop link.
Users of the antivirus application De.Fi and Web3 SocialFi are also the targets of an email that promotes the inauguration of a launchpad and contains a link to an airdrop. In addition, the assailants publicized a sham Token Terminal beta launch that included a claim icon for a simulated airdrop.
The malicious actors employ email addresses that bear no resemblance to the legitimate addresses of the affiliated organizations in an attempt to deceive recipients into accepting them as authentic.
Investors should exercise utmost caution when engaging with emails purporting to declare unforeseen airdrops.