Crypto scammers have devised a new tactic to deceive owners of Ethereum Name Service (ENS) domains, commonly recognized by their “.eth” extension. The ENS email phishing scam involves sending emails to ENS owners, purportedly alerting them about the expiration of their domains.
However, instead of directing them to legitimate renewal sites, unsuspecting victims are lured to fraudulent platforms designed to siphon their funds.
Nick Bax, a prominent figure in cryptocurrency analysis, highlighted the crypto scam, suggesting that attackers may be exploiting the extensive data leak from previous data breaches. This leak potentially provides scammers with access to genuine email addresses associated with .eth accounts, facilitating the targeting of ENS owners.
The ENS Email Phishing Scam
Nick warns that this method represents an emerging threat and advises users to remain vigilant. Phishers have adeptly mapped ENS domains to corresponding email addresses, with the Twitter database leak likely serving as a primary data source for this malicious activity.
The Ethereum Name Service (ENS) serves as a decentralized domain name system (DNS) built on the Ethereum blockchain. Similar to the traditional DNS used on the internet, ENS enables users to associate human-readable names with complex Ethereum addresses, simplifying transactions and interactions within the ecosystem.
One reported instance of this scam involved a phishing email falsely claiming that the recipient’s ENS domain was on the brink of expiration.
The email provided a link to a counterfeit renewal site, urging users to act promptly to avoid service disruptions. The fraudulent domain, disguised as a legitimate ENS site, aimed to deceive users into surrendering their sensitive information and cryptocurrency assets.
More Ethereum Phishing Scam on the Market
Despite its recent resurgence, this ENS email phishing scam is not entirely new. Just last week, Hayden Adams, the creator of the decentralized exchange Uniswap, exposed a sophisticated Ethereum phishing scam exploiting ENS domains. Victims have collectively lost over $47,600 to this elaborate ploy, demonstrating the severity of the threat, reported BNN Breaking.
Hayden Adams shed light on the scam’s mechanics, which involve replicating genuine wallet addresses with deceptive .eth extensions. This manipulation misleads users into sending cryptocurrency to fraudulent addresses, resulting in substantial financial losses.
The scam’s sophistication extends to the replication of legitimate addresses within user interfaces, making it difficult for individuals to discern between authentic and counterfeit domains.
Additionally, scammers have adopted address poisoning tactics, whereby small transactions of real Ethereum or fake Tether are sent to potential victims, further enhancing the illusion of legitimacy.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.