Netskope Finds Hackers Using Google Sites and Microsoft Azure to Steal Cryptocurrency – Secure Bitcoin News

Attackers are using certain SEO techniques to direct users to wallet apps like Metamask and phishing sites for exchanges like Coinbase and Kraken. According to Netskope, the sites were created in Google Sites and Microsoft Azure to trick users into introducing their personal information, allowing malicious entities to steal their money from these services.

According to Netskope, Crypto Phishing Scheme Uses SEO, Google Sites and Microsoft Azure

Online security firm Netskope has detected a new cryptocurrency phishing scam involving SEO techniques and parody pages. According to a report by the company, throughout 2022, attackers have been detected using blogs as a tool to distribute links to phishing sites.

In these blogs, attackers post links with SEO content that makes them rank high in search engine queries. This means that these links will be reviewed by many people who can then open what they believe to be genuine encrypted websites. However, these links lead users to phishing sites that are very similar to encryption-based sites, such as the Metamask site.

Other sites also mimic exchanges like Coinbase, Gemini, and Kraken.

Phishing Mechanism

Hosted on Google Sites or using Microsoft Azure, these phishing sites are designed to trick users and obtain their personal information in two different ways. The first has to do with getting the private seed of the user’s wallet directly by prompting them to import this data. This is the method currently used by Metamask phishing sites.

The second has to do with obtaining information on user accounts on any of the phished exchanges. When the user enters their information, the website returns an error and prompts them to contact the support operator, which will try to obtain more information about the user to successfully obtain funds.

Netskope said:

Netskope strongly recommends that users do not enter credentials after clicking a link. Instead, always navigate directly to the site you are trying to log in to. For organizations, we also recommend using a secure web gateway that can detect and block phishing in real time.

Phishing scams are nothing new in the cryptocurrency world. Binance detected and warned about a massive phishing scam involving SMS in February.

What do you think of new phishing schemes involving SEO, Google sites, and Microsoft Azure-hosted web pages? Let us know in the comments section below.

Sergio Goshenko

Sergio is a cryptocurrency journalist based in Venezuela. He describes himself being late to the game, entering the crypto space when prices rose in December 2017. With a computer engineering background, living in Venezuela, and being affected by the cryptocurrency craze on a social level, he offers a different perspective on the success of cryptocurrencies and how it can help the unbanked and underserved.

Image Source: Shutterstock, Pixabay, Wiki Commons

Disclaimer: This article is for reference only. It is not a direct offer or invitation to offer, nor is it a recommendation or endorsement of any product, service or company. does not provide investment, tax, legal or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused or related to the use of or reliance on any content, goods or services mentioned herein.

Leave a Comment

%d bloggers like this: