Scammers exploit Google platform to promote phishing site
The malicious actors have reportedly registered multiple domains mimicking Whales Market.
Google appears to be promoting a malicious crypto website that directs users to a phishing website clone that drains users’ crypto through Google Ads, an online advertising platform enabling businesses to showcase ads on Google’s search engine results pages.
According to a report by BleepingComputer, threat actors have discovered a method to advertise a counterfeit version of Whales Market, an over-the-counter (OTC) cryptocurrency platform facilitating the trading of airdropped tokens.
The report indicates that the fake version is being advertised as a sponsored link at the top of Google search results.
Cointelegraph has verified that Google is currently promoting the counterfeit Whales Market as an advert. Although it displays a seemingly genuine domain address on the search results page, users are rerouted to [www.whaels.market] instead of the authentic [www.whales.market] upon clicking.
BleepingComputer also notes that the malicious actors have reportedly registered multiple domains mimicking Whales Market, including [www.whaless.market], which is already inactive.
The fake version replicates the interface of the authentic Whales Market site, deceiving users into connecting their digital wallets. However, malicious scripts are activated upon doing so, siphoning crypto from victims’ wallets.
This incident contributes to similar events where scammers have used Google’s platform to advertise deceptive services.
An example is the nearly $900,000 worth of crypto drained from one of the hot wallets belonging to billionaire investor and Dallas Mavericks owner Mark Cuban by an unidentified hacker.
Related: Scam crypto projects using stolen funds for liquidity disappear
In December 2023, Scammers used a wallet-draining service called “MS Drainer” to siphon approximately $59 million in crypto from victims over the past nine months.
The scammers used Google Ads to target victims with fake versions of popular crypto sites, including Zapper, Lido, Stargate, DefiLlama, Orbiter Finance and Radient.
While the individuals responsible for this recent phishing campaign are still unknown, Google appears to be taking action against scammers.
In April, Google filed a lawsuit against Chinese nationals Yunfeng Sun and Hongnam Cheung for deceiving individuals with counterfeit crypto investments through the Google Play store.
Wallet drainers have become a major problem in the Web3 ecosystem. In November 2023, the developer of the “Inferno” drainer claimed to be retiring after successfully stealing more than $80 million from victims during the software’s lifetime.
In March, the developer of “Monkey Drainer,” which had successfully stolen an estimated $13 million up to that point, also announced their retirement.
Responses