JPEG’d, a peer-to-peer non-fungible token (NFT) lending platform, has issued a critical alert to its users regarding a significant upsurge in phishing campaigns and the emergence of a dangerous revocation tool that poses a serious threat to digital assets.
It has come to our attention that scammers are targeting $JPEG holders claiming false approvals on phishing contracts and linking to a malicious revocation tool. The current name they go under is “Trojansec”.
Please do not interact with them or any contract that you are unsure…
— JPEG’d (@JPEGd_69) October 30, 2023
Web3 enthusiasts frequently employ these revocation services to revoke previously granted access permissions to decentralized applications (dApps).
According to the warning message from JPEG’d, malicious actors have initiated numerous fake platforms imitating legitimate revocation services. Their primary goal is to deceive users into approving transactions, which in turn allows them to steal NFTs and cryptocurrencies from unsuspecting victims’ wallets.
This tactic seems to be the latest in a series of phishing attacks targeting the cryptocurrency community in recent times. These phishing attempts have targeted prominent figures, including the well-known hardware wallet manufacturer Trezor.
@NellioETH is compromised and pretending to be a member of ScamSniffer. they are trying to message people in an attempt to social engineer them into using a phishing site.
please always make sure you are visiting https://t.co/5EiAnyXFCg pic.twitter.com/2CCgUhMCKk
— Scam Sniffer | Web3 Anti-Scam (@realScamSniffer) October 18, 2023
On October 26, anonymous blockchain investigator ZachXBT reported a phishing attack aimed at Trezor users via his Telegram channel. This was confirmed by another user, JHDN, who expressed concerns about the breach.
JHDN also featured a screenshot of a phishing email received by a Trezor user in a Tweet, urging recipients to download an app from the domain’ trezor.us,’ which is different from Trezor’s official domain ‘trezor.io’.
Also, on October 10, Hong Kong police issued a warning over a phishing scam targeting Binance users, in which about 11 victims have lost about $446,000 worth of cryptocurrencies.The attacker(s) reportedly sent text messages to users disguised as Binance, urging victims to verify their account details and also threatening the victims with account deactivation if they fail to confirm their personal information before the giving deadline.
The Hong Kong police advised residents to only use crypto retail services on the Security and Futures Commission (SFC)’s list of licensed virtual asset platforms for safer trading.
If you want to read more news articles like this, visit DeFi Planet and follow us on Twitter, LinkedIn, Facebook, Instagram, and CoinMarketCap Community.
“Take control of your crypto portfolio with MARKETS PRO, DeFi Planet’s suite of analytics tools.”
