Learn about a new wave of phishing attacks targeting crypto holders via fake emails posing as security services, urging victims to reveal seed phrases and drain wallets.
© RusPhotoBank
Foreign media are reporting a new wave of phishing attacks targeting cryptocurrency holders worldwide. Attackers are sending fake emails designed to trick victims into revealing their seed phrases, giving scammers full access to their wallets.
According to TechRadar, the fraudsters are posing as "security services" of popular crypto platforms. The emails claim that the service is introducing mandatory identity verification, warning that failure to complete it could restrict wallet access. Victims are urged to scan a QR code before a deadline to urgently confirm their details.
Scanning the QR code leads users to a fake page that looks identical to the official website. There, the message repeats the need for urgent "verification," prompting the victim to enter their wallet recovery seed phrase. Once hackers obtain this data, they can instantly import the wallet to another device and drain all funds.
Cybersecurity expert Dmitry Smilyants confirmed that he has personally encountered such emails, indicating these attacks are widespread.
Sources note that the exact method of obtaining email addresses remains unknown. However, over recent years, many cryptocurrency services have experienced data breaches involving user information. This makes digital asset owners especially vulnerable to these deceptive schemes.