Coin Edition -
- Security experts expose a phishing scam targeting KeePass users on Google.
- The crypto community is warned to remain vigilant as phishing attempts persist.
- Google has been notified about fraudulent advertisements.
Bad actors continuously exploit ingenious means to hack into the devices of unsuspecting victims to potentially siphon their cryptocurrency holdings. In a recent statement, X user named 23pds, a team member of the renowned blockchain security threat tracker SlowMist, disclosed a scam advertisement on Google.
The security threat researcher revealed that a fraudulent advertisement of the well-known open-source password manager KeePass ranked first on Google search. According to him, the bad actors sought to deceive unsuspecting persons as they camouflaged a phishing portal to KeePass’ official website.
Emphatically, clicking the advert leads the victim to a sham website that resembles KeePass. Consequently, the victim would download a piece of Trojan software, thinking to have gotten the original app from an “official’ source.
While 23pds posted the message in Chinese, the famous crypto-focused Chinese reporter Colin Wu narrated the incident in English to benefit the broader crypto community.
The well-known open source password manager KeePass appears in a Google search for an official advertising phishing website. Once users enter the fake official website, they will download Trojan software. According to @IM_23pds pic.twitter.com/thzPszAbz8— Wu Blockchain (@WuBlockchain) October 23, 2023
Given the potential threat to the crypto community, the security researcher cautioned crypto enthusiasts to pay extra attention to the safety of their investments. “Cryptocurrency users are advised to pay attention to security risks at all times,” the statement read.
Besides, the SlowMist team member highlighted that the attention of Google has been called to the fraudulent advertisement. He particularly stated that he submitted a complaint against the phishing website to the ad behemoth.
However, whether Google has taken action against the phishing ad is unclear, as the promotion could still be running in specific locations. Coin Edition reported a similar phishing Google ad targeted at the renowned crypto wallet Imtoken in April.
The post Google Ad Scam Targets KeePass Password Manager, Crypto Users Beware appeared first on Coin Edition.