Google is displaying crypto phishing websites on top of the original CoinMarketCap website.
Changpeng Zhao (CZ), the CEO of Binance, warned on Twitter that Google displays phishing sites when users search for CoinMarketCap. Binance Holding Limited, founded by CZ, is the parent company of CoinMarketCap.
CZ says that these phishing sites affect users adding smart contract addresses to MetaMask using them. They are trying to contact Google to solve this problem. But, as of writing, the problem persists.
The phishing site is in the form of a Google Ad. For security purposes, the user should verify the spellings in the link before blindly clicking the first search result. It is even better to avoid clicking on the link that mentions “Ad.” Generally, the original link will be just below the Ad links, as shown in the screenshot.
Users lash out at Google
The users are frustrated and accuse Google of being the biggest scam promoter on earth, using phrases like “Google is the darknet of the surface net.” Earlier, a user questioned Google on when they will address the phishing that is occurring with paid ads.
This issue is just affecting CoinMarketCap. Google also displayed a phishing site on top of SpookySwap, a DeFi platform. Users believe that Google encourages and capitalizes on crypto phishing scam sites.
The Crypto Phishing
Crypto users are frequent victims of phishing attacks. Last week, crypto exchange Gate.io was compromised. The scammer were promoting phishing scams. The attackers changed the official website URL on the Twitter handle to gate.com from gate.io. The landing page promised a $500,000 USDT giveaway.
In July, users of Uniswap V3 lost over $8 million to a phishing attack. The attackers sent the malicious token UniswapLP to victims. They were sent to a website stating they could swap the malicious token for Uniswap (UNI). The website would then read sensitive information and steal funds from wallets. Attackers used Tornado Cash to launder the funds.
Earlier this year, film star Seth Green lost four Bored Ape NFTs worth over $300,000 to a phishing attack. The theft occurred when the actor tried to buy another NFT but connected his wallet to a scam website.