Blockchain security experts at Scam Sniffer discovered a new scam scheme using Google Ads. Following the link redirects users to a fake site of the popular NFT collection Pudgy Penguins. In their post on the X platform, the analysts explained that these ads contain JavaScript code that checks if the user has a crypto wallet. If a wallet is detected, the code redirects the user to a fake site mimicking the official Pudgy Penguins resource — an NFT collection with 8,888 unique images of cute cartoon penguins.
On the fake site, scammers can steal personal data or convince victims to connect their crypto wallets and grant permissions, thereby gaining unauthorized access to their funds.
This is not the first instance of fraud through Google Ads. For example, cyber scammers have already mimicked services like Revoke Cash, official Soneium site and Whales Market platform, creating fake sites to steal assets.
As reported by Chinalysis analysts, 2024 was the fifth year in the decade when losses from hacking exceeded $1 billion, reaching a record $2.2 billion. The number of attacks increased from 282 in 2023 to 303 in 2024, with most targeted at:
- Centralized platforms. For example, an attack on the Japanese exchange DMM Bitcoin resulted in a loss of $305 million.
- DeFi platforms, which often neglect security for the sake of rapid deployment.
Compromises of private keys became particularly dangerous, accounting for 43.8% of all losses.
Hackers linked to North Korea in 2024 increased the volume of stolen funds by 102.88% to $1.34 billion. This represents 61% of all losses for the year.
Spelling error report
The following text will be sent to our editors: