MetaMask scammers are exploiting government websites to steal crypto assets from unsuspecting users.
Recent reports reveal that MetaMask scammers have compromised government websites to target cryptocurrency investors. The scam redirects users to fraudulent websites impersonating MetaMask that request users to download a fake MetaMask apk file, granting the scammers full control.
MetaMask scammers using the Consumer Protection Agency Egypt’s site to trick crypto users
MetaMask scammers using the Nigerian Postal Service site to trick crypto users
Scammers using Ramadevi Women’s University site to trick crypto users
Scammers using the Municipal Corporation Ambala, India’s site to trick crypto users
Investigations found that official government websites from India, Nigeria, Egypt, Colombia, Brazil, Vietnam and other jurisdictions have been used to perpetrate this scam. The similarity between the real and fake MetaMask websites is one of the main reasons investors fall for the scam.
MetaMask, an Ethereum-based crypto wallet, has been a popular target for scammers who send unwary users to fraudulent websites that ask for access to MetaMask wallets.
While accessing the reported phishing site, Microsoft Defender and Google Chrome warn users of possible phishing attempts. If a user chooses to disregard the warning, they are then greeted by a website that looks remarkably similar to the official MetaMask website.
Google Chrome marked the fake MetaMask URL as dangerous
The scam is a social engineering attack that lures users to a website and asks them to download a fake apk file.
Here is a comparison of the scam site and the original metamask.io:
The phishing website users are being directed to.
The original metamask.io.
The fake Metamask website initially looks convincing to users. It features the familiar Metamask fox icon and a clean interface mimicking the real cryptocurrency wallet platform. However, clicking on links and features on the fake site reveals that most do not function properly. The links fail to connect to useful pages or wallet tools. Only the download button remains active.
Some of these phishing sites ask users to connect their MetaMask wallets to various features on the website, which is likely to compromise the users' seed phrase and give hackers complete control over their crypto assets.
This article contains links to third-party websites or other content for information purposes only (“Third-Party Sites”). The Third-Party Sites are not under the control of CoinMarketCap, and CoinMarketCap is not responsible for the content of any Third-Party Site, including without limitation any link contained in a Third-Party Site, or any changes or updates to a Third-Party Site. CoinMarketCap is providing these links to you only as a convenience, and the inclusion of any link does not imply endorsement, approval or recommendation by CoinMarketCap of the site or any association with its operators. This article is intended to be used and must be used for informational purposes only. It is important to do your own research and analysis before making any material decisions related to any of the products or services described. This article is not intended as, and shall not be construed as, financial advice. The views and opinions expressed in this article are the author’s [company’s] own and do not necessarily reflect those of CoinMarketCap. CoinMarketCap is not responsible for the success or authenticity of any project, we aim to act as a neutral informational resource for end-users.
