Don't get scammed because of wallet upgrade

Smack That Ace

legendary

Activity: 1974

Merit: 1108

Free Free Palestine

Quote from: OcTradism on January 24, 2023, 06:58:56 AM

Quote from: Taskford on January 24, 2023, 05:44:53 AM

Common used trick by hackers so verify always what we read online specially when the message came from spam folder on email since mostly they sent a message there. Much better ask the support of the website to know if the upgrade is legitimate and we will not fall on fake upgrade sites which compromise all our funds.

Always verify what you download. Unfortunately very little people do verification for their download files.

At least, if they do verify it, they must do it right at first. Knowing what is official website and get link to download from an official website is a first safe step to do.

Officially visit websites & download apps, not fake ones.

This is what I always do, and I strongly recommend people always do this instead of clicking on a link sent from an email or private message. No matter what email I receive, I rarely confirm whether it is an official or fake email. What I would do is visit their official website or social media to confirm the information, because I think before they send emails to customers, those messages are already communicated in their main media. And if that's true, I will update following the instructions from their website instead of going back to the email and following the instructions in the email.

capedbaldy

sr. member

Activity: 832

Merit: 286

DGbet.fun - Crypto Sportsbook

Quote from: drwhobox on January 26, 2023, 04:34:36 PM

They don't collect your email from meta mask for sure. Scammers who use email for scams collect your email from different crypto-related websites and forums where you set your email address public. They send automated emails to their collected email list.
This thing needed to be shared for the awareness of many forum members here.

It's very easy for them to get active emails from various fraudulent registration forms to get coin airdrops, so many registrants are beginners who don't understand crypto so they find it easier to believe fake information sent from email messages that scammers have spread. So many phishing scams are related to update wallet so we have to be careful, it is better to ignore the notification and access real wallet to update from system and not from fake information.

lalabotax

full member

Activity: 1582

Merit: 132

BK8 - Most Trusted Gambling Platform

Thanks for sharing this experience. This will help and remind us to be more careful.

Again, this trick may work for people who are less skilled or new. Because they assume that the notification is real from Metamask or another online wallet email. However, actually, when we are going to upgrade an application, wouldn't it be better if we immediately confirmed it when opening the application? Usually, there will be an immediate upgrade notification or application update when we open the application. So we'll know when we need it. But once again, when it comes to e-mail, we really have to be vigilant because scammers can camouflage themselves to be like official e-mails with very small and unnoticed e-mail differences.

drwhobox

full member

Activity: 756

Merit: 133

- hello doctor who box

Quote from: KiaKia on January 23, 2023, 11:46:26 AM

I am pretty sure that the metamask team has no mail ID and also the wallet never ask for email address when creating a new wallet account, so the question is how did they get your email address? This is a RED FLAG.

They don't collect your email from meta mask for sure. Scammers who use email for scams collect your email from different crypto-related websites and forums where you set your email address public. They send automated emails to their collected email list.
This thing needed to be shared for the awareness of many forum members here.

Queentoshi

sr. member

Activity: 854

Merit: 327

Hire Bitcointalk Camp. Manager @ r7promotions.com

When it comes to upgrading of any application, do it from only trusted sources like your app store. Deciding to search for updates randomly on the internet can be a bad idea because you cannot tell when you will fall into the net of scammers. If I can receive random calls from scammers asking me to confirm my banking card by calling the numbers behind, I do not see why receiving strange and suspicious emails should be strange. Those people have access to even things we do not know.

Luzin

hero member

Activity: 1400

Merit: 770

Quote from: Taskford on January 25, 2023, 06:52:10 AM

Exactly some users fail to do this because if they are ro innocent for this they are to lazy to seek for further information about what notice they receive. If majority just have critical thinking towards this and always know what to do especially when receiving a unwanted or verifiable information for sure they never get victim on this kind of schemes.

In fact I always suspect if there are emails about wallets and any kind related to Crypto. Unless I'm right to do that myself. Because I always pin the sites I visit. It's one of the methods I use to avoid scam sites. I also often overlook emails that I thought were useless, not from my job. Because they always communicate with me if they send an email. Although the current model of criminals is very diverse, the important thing is to always be vigilant, don't trust anyone in the online world. In addition, I also rarely use metamask, trust wallet to connect with Airdorop sites or other exchanges.

Taskford

hero member

Activity: 2520

Merit: 783

Quote from: OcTradism on January 24, 2023, 06:58:56 AM

Quote from: Taskford on January 24, 2023, 05:44:53 AM

Common used trick by hackers so verify always what we read online specially when the message came from spam folder on email since mostly they sent a message there. Much better ask the support of the website to know if the upgrade is legitimate and we will not fall on fake upgrade sites which compromise all our funds.

Always verify what you download. Unfortunately very little people do verification for their download files.

At least, if they do verify it, they must do it right at first. Knowing what is official website and get link to download from an official website is a first safe step to do.

Officially visit websites & download apps, not fake ones.

Exactly some users fail to do this because if they are ro innocent for this they are to lazy to seek for further information about what notice they receive. If majority just have critical thinking towards this and always know what to do especially when receiving a unwanted or verifiable information for sure they never get victim on this kind of schemes.

Adbitco

hero member

Activity: 1428

Merit: 653

Leading Crypto Sports Betting & Casino Platform

Upgrading of wallets have really swept lot of people's fund, and I think this same post have been shared before about metamask sending mails asking for update. How did they get to know your emails, do I say is from bounty spreadsheet or where exactly do we think people's mail will be that exposed for them to send scam mail to people around and they are always ready to steal people's funds. Maybe some are already a victim of this scam, mainwhile, newbies should be more careful with their wallet when it comes of update, i don't accept any random pop-up notification to update whatever app in your phone, instead you may visit playstore to get it updated.

yazher

hero member

Activity: 2268

Merit: 588

You own the pen

Quote from: Dunamisx on January 23, 2023, 03:09:18 PM

Anything that has to do with upgrading a wallet app must be sourced from the official website and not the embedded links available on the internet where everyone can easily have access to and abuse it, those that are not the official links from their sites are the ones aimed to attack people through phishing links, they comes with various apps ads on different websites which redirect user to their own fake website for further attack.

I think the scammers are also intelligent when it comes to sending people about the upgrades of wallets because sometimes they join the original creator to send their own phishing link to confuse the users. It's really recommendable to double-check everything before proceeding to click because one bad click will result in the loss of everything you have in that crypto wallet. With this kind of fraud, there are a lot who already have fallen victim and they are too late when they find out they have been hacked due to the link they clicked from their emails.

OcTradism

hero member

Activity: 1722

Merit: 801

Quote from: Taskford on January 24, 2023, 05:44:53 AM

Common used trick by hackers so verify always what we read online specially when the message came from spam folder on email since mostly they sent a message there. Much better ask the support of the website to know if the upgrade is legitimate and we will not fall on fake upgrade sites which compromise all our funds.

Always verify what you download. Unfortunately very little people do verification for their download files.

At least, if they do verify it, they must do it right at first. Knowing what is official website and get link to download from an official website is a first safe step to do.

Officially visit websites & download apps, not fake ones.

Taskford

hero member

Activity: 2520

Merit: 783

Common used trick by hackers so verify always what we read online specially when the message came from spam folder on email since mostly they sent a message there. Much better ask the support of the website to know if the upgrade is legitimate and we will not fall on fake upgrade sites which compromise all our funds.

jrrsparkles

sr. member

Activity: 2520

Merit: 280

Hire Bitcointalk Camp. Manager @ r7promotions.com

This trick is very common in hacking world but its more used in the field of social media accounts to hack them as far as I know but this is something new so yes be cautious whenever you receive such messages. You are not likely to receive such warnings through emails if its legit, either you can be notified with their official media handles or with the app notification itself.

Be aware of masking, it will redirect us to exact replica of the official website or something relevant to it where we enter anything will be visible to the hackers so don't every such fall for tricks anymore.

Jawhead999

legendary

Activity: 1834

Merit: 1208

AFAIK non custodial wallets are always can be accessible even though you're using an old version, usually the upgrade is related about new feature, fix bug, security improvement etc. If you need to update your old wallet, it's really recommended to access it through your wallet or from the official site or github, don't trust anywhere like email, social medias etc.

Obari

sr. member

Activity: 602

Merit: 442

I buy all valid country Gift cards swiftly.

Thank you so much for this prompt wake up call and this is really helpful especially for the newbies who want to go with trends and don't want to miss out of any little opportunity they get along their path and crypto journey.
Most times I just sit down to imagine how updates this scammers are and how mich well they evolve with the world and technology and it only bit amazes me.
For every potential scam message I get, I just wave and flag them off or move them to spam without deleting them because I always reference them when I get a similar message because in the last years it has really helped me alot to stay safe in the cyber space.

sunsilk

hero member

Activity: 3038

Merit: 634

Traced back when and where did you used your email for signing up and if you just signed up with a few then you'll have the idea on who's the culprit that sends out your email to these scammers.

These scammers/hackers know how to play the minds of everyone especially those that has no to little background about wallets and stuff. They're like making you decide quickly to click those links that they attached but if you've been fooled, you'll really fall for it.

Saisher

full member

Activity: 2324

Merit: 175

Quote from: KiaKia on January 23, 2023, 11:46:26 AM

I am pretty sure that the metamask team has no mail ID and also the wallet never ask for email address when creating a new wallet account, so the question is how did they get your email address? This is a RED FLAG.

No, they are not asking for email its impossible for the metamask team to get your email or any decentralized wallet, this is a red flag that anyone who falls for it does not even think or even stop and ask where did they get my email and if you know security the basic is always been never click any link coming from an unknown source and if there is a wallet upgrade it should be after you open the wallet not coming from a link, a decentralized platform never send a link to upgrade, basics that newbies are overlooking

Crypt0Gore

sr. member

Activity: 952

Merit: 275

There are many ways you can leak your email address online and the most popular one is through airdrops, I receive spam emails and fake messages through emails that I have used for raindrop hunting in past more than the email I don't use for airdrop hunting.

There is something called Email Harvesting where the scammers use bots to scout the web for email addresses, this hot use the @ symbol to identify any email format on the web and grab them one by one and add it to the list. I believe to have seen this bot at work when a friend of mine was into affiliate marketing.

cryptoaddictchie

legendary

Activity: 2268

Merit: 1379

Fully Regulated Crypto Casino

The design is pretty sketchy though. I think upgrading waller should be done on website itself, so any messages of possible upgrade is most likely scam. I was always worried about this style of update or checking if the email was legit and came from their official sites or own social cause this could be fake users who are trying to phish you when you click the link or their downloadable box.

Sarah Azhari

hero member

Activity: 868

Merit: 737

Quote from: KiaKia on January 23, 2023, 11:46:26 AM

The link directs me to a page link platform that asks you to insert your metamask recovery seed to proceed.

You have been correct responsive, and careful. This is happened to me also in the past after installing Fake Extension. The software asks me to input the word mnemonic which I think it's a 100% scam. This is the same case like you got call the bank, the caller ask the pin, otp and mother name, off corse this is really scam because CS Bank never ask the PIN or OTP code when they call you.

Smartvirus

legendary

Activity: 1554

Merit: 1139

Definitely, knowing that the metamask wallet doesn't require an email address in its set-up was definitely a better place for a start. Still, you would find those that due to adrenaline rush, would jump at the information because, they've heard of the possibility of loosing there funds (besides, who won't want to secure there funds) but, in taking that step without first taking a moment to check into your reasoning asoning on what could be going on, your lose the very thing you hope to save.

My advise and what works with me on this is, if its working fine @wallet, what's the use or need for an update. Its just unnecessary.

Quote from: KiaKia on January 23, 2023, 11:46:26 AM

They must have gathered hundreds or thousands of email addresses and used some kind of messaging tool to send out the scam mail alert in a single click. If you are new to crypto stay away from email messages, some are scams and they won't end up in SPAM Folder.

Mail address is something that comes handy for these guys and sending spam messages to just anyone, including those that don't don't use metamask wallet is not an issue with them.

Topic: Don't get scammed because of wallet upgrade (Read 273 times)