[vc_row full_width=”stretch_row” css=”.vc_custom_1531732107238{background-color: #fcc118 !important;}”][vc_column]

[/vc_column][/vc_row][vc_row css=”.vc_custom_1531730959461{border-bottom-width: 1px !important;background-color: #f9fafb !important;border-bottom-color: #eef3f7 !important;border-bottom-style: solid !important;}”][vc_column css=”.vc_custom_1531891416301{margin-bottom: 0px !important;}”][bsfp-cryptocurrency style=”widget-6″ align=”auto” columns=”2″ scheme=”light” coins=”top-x-coins” coins-count=”8″ coins-selected=”” currency=”USD” title=”Cryptocurrencies” show_title=”0″ icon=”” heading_color=”” heading_style=”default” bs-show-desktop=”1″ bs-show-tablet=”1″ bs-show-phone=”1″ css=”.vc_custom_1531730265600{margin-bottom: 0px !important;}” custom-css-class=”” custom-id=””][/vc_column][/vc_row]

Scammers create Blockworks clone site to drain crypto wallets

0

Phishing scammers have cloned the websites of crypto media outlet Blockworks and Ethereum blockchain scanner Etherscan to trick unsuspecting readers into connecting their wallets to a crypto drainer.

A fake Blockworks site displays a fake “BREAKING” news report of a supposed multimillion-dollar “approvals exploit” on the decentralized exchange Uniswap and encourages users to a faked Etherscan website to rescind approvals. 

The fake Uniswap news article was posted on Reddit across several popular crypto-related subreddits by seemingly compromised Reddit accounts.

The fake Blockworks website (left) shows a fake breaking news story of a Uniswap exploit compared to the legitimate website (right).

The fake Etherscan website, which display a purported token and smart contract approval checker, instead contains a wallet drainer.

Blockchain security firm Beosin reviewed the drainer’s smart contract and told Cointelegraph the attacker hopes to drain wallets with at least 0.1 Ether (ETH), worth $180. However, the drainer is incorrectly set up as “there is no phishing transaction prompted after a wallet is connected.”

The phishing website (left) compared to the legitimate Etherscan website (right).

Related: 85% of crypto rug pulls in Q3 didn’t report audits: Hacken

An age check of the domains shows the fake Etherscan site, approvalscan.io, was registered on Oct. 25 and the faked Blockworks site, blockworks.media, was registered a day later.

In an Oct. 25 post on X (Twitter), Web3 anti-scam platform Scam Sniffer reported $190,000 in funds was drained from a crypto wallet with the victim signing a malicious signature.

Scam Sniffer’s post shows phishing scammers deployed a wallet drainer on a website cloning the crypto news outlet Decrypt that prompts users to connect their wallet for an airdrop of the publication’s token.

Magazine: Ethereum restaking — Blockchain innovation or dangerous house of cards?

Update (Oct. 27, 1:30 am UTC): This article has been updated with further information and comment from Beosin.