- Malicious actors want to steal crypto from users of Blockworks and Etherscan platforms
- The scammers have cloned the two websites and attached a wallet drainer function
- The actors plan to entice unsuspecting Blockworks readers with fake breaking news of an exploit on Uniswap
Malicious actors have cloned Blockworks and Etherscan websites and linked wallet drainers to the fake platforms to steal crypto from unsuspecting users of the two websites. The scammers are using fake breaking news of an exploit on Uniswap to push Blockworks’ readers to click on the malicious link and have their wallets emptied. The two clones were created a day apart and follow a recent similar attempt by scammers to nab Decrypt readers, an indication that malicious actors are targeting unsuspecting crypto investors who follow industry news on leading crypto and web3 news websites.
Reddit Groups Also Under Scammers’ Control?
An analysis of how the two website clones are related indicates that the fake news link on Blockworks directs readers to the Etherscan clone asking them to connect their wallets to cancel any rights granted to Uniswap.
Details further show that the malicious actors shared the fake news of a Uniswap hack on several Reddit groups that also appear to unlawfully be under the control of the scammers.
Speaking to Cointelegraph, blockchain security firm Beosin disclosed that the scammers are targeting wallets with at least $180 or 0.1 ETH, but noted that the drainer function appears to be malfunctioning since there’s no command to drain a wallet after a successful connection.
Website cloning scams have been targeting leading websites and requesting unsuspecting individuals to sign dubious transactions. Popular NFT marketplace OpenSea has in the past been cloned and $450,000 worth of assets stolen.
Malicious Smart Contract Drains $300,000 Worth of NFTs
An NFT diehard known as CryptoNovo also lost CryptoPunks valued at over $300,000 after interacting with a malicious smart contract.
With the malicious wallet drainer seemingly malfunctioning, there are no casualties yet although this may change if the scammers rectify the errors.
