Hackers Using Google Sites and Microsoft Azure to Launch Crypto Phishing Campaigns

Hackers have continued to move into the crypto sector to steal digital assets. Hackers are now using SEO techniques to lead users toward phishing websites for wallet providers such as Metamask and cryptocurrency exchanges like Coinbase and Kraken.

Hackers devising new ways to steal crypto

A report from Netskope has shown that cryptocurrency phishing campaigns are now being conducted through multiple platforms such as Google Sites, Microsoft Azure, and SEO. Phishing campaigns have been behind massive losses by crypto investors over the years.

The sites targeted through these schemes are created using Microsoft Azure and Google Sites. Users on these platforms are tricked into providing their data and allowing the threat actors to steal funds from them.

This is the first kind of crypto scam that Netskope has traced. Netskope is an online security company that provides services related to SEO. A report from the company published in 2022 also said that hackers were using blog posts as tools to send out links.

The hackers posted links containing SEO content in the blog posts, allowing them to rank higher in the search engine results. It shows that the links will be accessed by many people who will open them believing they linked to real cryptocurrency websites. Instead, these links direct users to phishing websites similar to legitimate crypto websites like MetaMask. Some hackers mimic leading exchanges like Coinbase, Gemini, and Kraken.

Phishing campaigns

Phishing campaigns have become very prevalent in the crypto sector. Phishing sites are usually hosted on platforms like Microsoft Azure and Google Sites. They are designed to trick users and steal their personal information.

The information is used for multiple purposes, such as acquiring the private seed phrases of user wallets by prompting them to access the data. This is the technique being used by the Metamask phishing site.

The hackers also obtain the account details of the exchanges involved in the campaign. When users provide their information, the sites are prompted to contact support, after which the hackers obtain more details about the users and how they can acquire their funds.

Netskope further said that users are advised not to provide credentials of their account details after following a link. Instead, users are advised to navigate directly to the site they want to access. Institutions must also use a secure web gateway to detect and block phishing in real-time.

It is not the first time phishing campaigns are appearing in the crypto sector. in February this year, Binance, the largest exchange, detected and warned users about a phishing scam.

Tamadoge - The Play to Earn Dogecoin

Our Rating

Tamadoge
  • '10x - 50x Potential' - CNBC Report
  • Deflationary, Low Supply - 2 Billion
  • Listed on Bybit, OKX, Bitmart, LBank, MEXC, Uniswap
  • Move to Earn, Metaverse Integration on Roadmap
  • NFT Doge Pets - Potential for Mass Adoption
Tamadoge