Complete Guide to Fake Metamask 2fa Security Checks Lure Users Into Sharing Recovery...

According to SlowMist, attackers are impersonating MetaMask, aiming to steal users’ secret recovery phrases.

Crypto investors are being targeted by a new phishing campaign that impersonates MetaMask and tricks users into handing over their wallet recovery phrases, according to the blockchain security firm SlowMist.

The attackers are impersonating a two-factor authentication (2FA) security verification flow, which redirects users to fraudulent domains through fake security warnings that request users’ seed phrases.

When a user shares a wallet recovery phrase, the funds from the wallet are stolen, warned SlowMist's chief security officer, 23pds, in a Monday X post.

This new wave of scams serves as a reminder that decentralized wallet protocols would never ask users for their secret recovery phrase, which enables anyone to take control of the wallet.

Related: Bitcoin investor loses retirement fund in AI-fueled romance scam

The phishing email redirects users to fake domains impersonating MetaMask, urging them to enable 2FA within a short period, claiming they may lose access to key wallet features.

The final step of the fraudulent process asks users for their 12-word seed phrase to complete the “security setup.”

Crypto phishing scams involve hackers sharing fraudulent links with victims to steal sensitive information, such as crypto wallet private keys.

Phishing scams have been a long-standing issue in the cryptocurrency space, but a decreasing number of incidents signals that investors are becoming wiser to this threat.

Source: CoinTelegraph