Fraudsters Create Fake Unichain Website to Steal Cryptocurrency
Date: 2024-10-16 Author: Gabriel Deangelo Categories: CRYPTO PAYMENTS
The attackers changed some elements of the interface to trick users into connecting their crypto wallets to the fake resource. For example, the “Get Started” button was replaced with “Connect,” and the “Read Documents” section was renamed “Bridge,” prompting visitors to perform actions related to their assets.
To promote their fake site, the fraudsters purchased advertising space in the Google search engine. The ads displayed the official Unichain URL, but when users clicked on the link, they were redirected to a fake version of the site.
When a user clicked on the “Connect” button, the website requested a connection to the crypto wallet, after which it began sending numerous requests for transaction confirmation. When attempting to use the MetaMask wallet, users received a warning from Blockaid, which stated: "Approving this request may result in all your crypto assets being transferred to a third party."
The fake site has now been shut down, likely by the hosting company that discovered the fraudulent activity. Google has also removed all advertisements related to the site. Thanks to the quick response, the scammers did not have time to cause significant damage to users.
It is worth noting that on October 10, Uniswap Labs officially announced the development of Unichain, a new platform designed to reduce costs and speed up transactions between blockchains. The Unichain mainnet is expected to launch by the end of this year. At the moment, only the testnet is available, which is what the attackers took advantage of.
This is not the first time such cases have happened. Recently, a fake WalletConnect application was discovered in the Google Play store, created to imitate the protocol of the same name. The victims of this application were users who lost about $70,000.
