More than 18,000 Attacks Reportedly Stopped by Phantom Wallet
- Proof and the Moonbirds NFT project founder fell victim to a $500,000 phishing attack.
- Phantom wallet claims to have prevented 18.000 similar phishing attacks.
- Users pointed out that the malicious website that previously been flagged by Phantom wallet.
In a blog post about phishing and other scams, Phantom claimed that the wallet has scanned 85 million transactions and prevented 18 thousand of wallet-draining attacks. According to Francesco Agosti, Phantom co-founder and CTO, Phantom wallet employ manual and automatic processes to maintain its website blocklist. The platform takes additional measures to block sites that exhibit suspicious behavior proactively.
The CTO of Phantom Agosti made a statement:
We’ve always done certain forms of blocking—initially manually through an open source blocklist, and then getting more automated and sophisticated over time.
Moreover, a day after this blog post was published, entrepreneur Kevin Rose fell victim to an NFT hack. Rose, the developer of the Moonbirds NFT project, fell prey to a phishing attack after signing a message that took advantage of access to his MetaMask wallet on the OpenSea marketplace.
When Rose signed the message, the attacker exploited his access to steal over 40 NFTs, including an Autoglyphs NFT valued at over $500,000.
In response to Rose’s tweet, one user pointed out that Phantom wallet had informed its users of this malicious website, which led to losses for Rose and blacklisted it. Phantom responded to this tweet, stating, “we got your back.”
According to Agosti, the attack on Rose was caused by the fact that Rose had only signed a message and not a transaction. The present version of Phantom does not scan messages; however, Agosti has said this would change with future updates.
“You don’t have to change any settings; it’s all on by default. You probably won’t notice it when using safe dApps, but it activates when you visit a website or try to submit a transaction we think is malicious,” Agosti added.
It is not just Rose who has fallen prey to phishing attempts in the past week. Hackers launched a phishing attack on unsuspecting users this week, pretending to be the popular trading platform Robinhood through the exchange’s hijacked Twitter account.