Crypto users are facing increasing risks due to psychologically manipulative scams, as highlighted in SlowMist's Q2 report. While hacking techniques have remained stable, scams have shifted focus to offchain attacks, including fake browser extensions, compromised hardware wallets, and social engineering tactics. One alarming example features a malicious Chrome extension masquerading as a security tool that replaces legitimate downloads with harmful software. Another scam involves attackers sending tampered hardware wallets to victims, often through offers disguised as lottery wins. Additionally, a fake revoke website mimicking a trusted interface was found, prompting users to input private keys, leading to theft. The report suggests that attackers exploit users' urgency and trust, particularly during high-anxiety moments. Overall, phishing attacks and unauthorized access have led to significant crypto thefts, with SlowMist recovering around $12 million from various victims in the second quarter, highlighting the urgent need for awareness and vigilance among crypto investors.

Source 🔗