Security News > 2021 > May > Trust Wallet, MetaMask crypto wallets targeted by new support scam
Trust Wallet and MetaMask wallet users are being targeted in ongoing and aggressive Twitter phishing attacks to steal cryptocurrency funds.
MetaMask and Trust Wallet are mobile apps that let you create wallets to store, buy, send, and receive cryptocurrency and NFTs. When users launch MetaMask or Trust Wallet apps for the first time, the app prompts them to create a new wallet.
Readers should note that while we have shared a screenshot of a Trust Wallet recovery phrase above, we never created the above wallet.
For approximately two weeks, BleepingComputer has been tracking a Twitter phishing scam targeting Trust Wallet and MetaMask users that steals cryptocurrency wallets by promoting fake technical support forms.
The phishing scam starts with legitimate MetaMask or Trust Wallet users tweeting about a problem they are having with their wallets.
Once a Trust Wallet or MetaMask user submits their recovery phrase, the threat actors can use it to import the victim's wallet on their own devices and steal all of the deposited cryptocurrency funds.
News URL
Related news
- Researchers Uncover Python Package Targeting Crypto Wallets with Malicious Code (source)
- Lottie Player supply chain compromise: Sites, apps showing crypto scam pop-ups (source)
- Google Warns of Rising Cloaking Scams, AI-Driven Fraud, and Crypto Schemes (source)
- Now BlueSky hit with crypto scams as it crosses 20 million users (source)
- New fake Ledger data breach emails try to steal crypto wallets (source)