According to SlowMist founder Yu Jian, the chief developer of ENS (Ethereum Name Service) recently fell prey to a phishing attack that took advantage of a flaw in Google’s infrastructure. The attackers, posing as official Google entities, duped users into thinking they were facing legal issues. Despite Google’s efforts to thwart these scams, the group persisted in launching new phishing attacks, tempting users to divulge their account passwords on fake “google.com” subdomains.
Phishing Attack on ENS Developer
The phishing attack targeted the chief developer of ENS, exploiting a vulnerability within Google’s infrastructure. By impersonating Google, the attackers aimed to deceive users into revealing sensitive information under false pretenses.
How Did the Phishing Scam Work?
The attackers sent emails masquerading as legitimate correspondence from Google, creating a sense of urgency by claiming users were under investigation. This tactic aimed to induce panic and coerce individuals into divulging their account credentials on fraudulent websites.
Google’s Response and Continued Threat
Despite Google’s countermeasures, the phishing group persisted in their fraudulent activities, launching subsequent waves of attacks. By directing users to deceptive subdomains under the guise of Google, the attackers sought to harvest passwords and implement Passkeys immediately.
Protecting Against Phishing Scams
In light of this incident, users are reminded to exercise caution when responding to unsolicited emails, especially those requesting sensitive information. Verifying the authenticity of communication from reputed sources like Google can help prevent falling victim to such phishing schemes.
Don’t let your guard down – stay vigilant against phishing attempts and prioritize safeguarding your personal information online.
#Phishing scams, #Google security, #ENS developer cyber attack