VERDICT —OUT OF SCOPE
Root cause is phishing — victims signed malicious transactions or approvals off-protocol. Contract logic was not the failure surface; user-side wallet hygiene was. Pre-deployment audit cannot catch this class.
▰ METHOD
PHISHING
PHISHING
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
Popular cryptocurrency websites including Etherscan, CoinGecko, and DeFi Pulse have reported incidents of malicious pop-ups prompting users to connect their MetaMask wallets. CoinGecko founder Bobby Ong said he believes the culprit is a malicious ad script from a crypto ad network called Coinzilla. The ad appears to be from a website parodying the popular Bored Apes Yacht Club NFT project, which was taken down after the scam was discovered. Attack method (per SlowMist): Phishing attack. Reported loss: -.
Sourced from
slowmist
Technical record
- chain
- —
- protocol
- CoinGecko&Etherscan&DeFi Pulse
- bug_class
- phishing
- date_occurred
- 2022-05-14
- loss_usd
- —
- source_id
- sm:coingecko-etherscan-defi-pulse::2022-05-14
Related — same bug class· phishing