A type of cyber scam that involves fake advertisements via fraudulent websites asking for sensitive information like password or SIN number.
What is Phishing in NFT?
Phishing is one of the most common types of cyber attacks made by cybercriminals. And in web3, this is particularly rampant as cybercriminals target people to gain access to their digital wallets.
Here is an example of a NFT phishing attack:
For an NFT enthusiast to buy their first NFT, they should sign up for a wallet that interacts with the Ethereum blockchain, like MetaMask, which is the most popular choice. Phishing attacks aim at the users of MetaMask by displaying phony advertisements asking for their 12-word security seed phrases or private wallet keys.
If a wallet holder responds to such phishing attacks/advertisements, the attacker gets hold of their private information and can drain their digital wallet in no time.
Or they hack an NFT project’s discord and publish a phishing link for a stealth mint, which that sends the individual to a website that looks identical to the project’s official website. People who connect their Metamask wallet and try to get in on this stealth mint are thereby giving approvals to have their wallet balance and NFTs stolen.