How to avoid Uniswap scams
Google began to advertise massively phishing copies of the Uniswap service
According to preliminary information, scammers stole at least 1.5 ETH
No fake website ads were found in the search engines Yandex, DuckDuckGo and Bing
International consortium of news organizations developing transparency standards.
Now Google is displaying at least three fraudulent projects posing as the original service.
Uniswap: how to use it and what are the risks?
Tech giant Google advertises at least three phishing projects posing as Uniswap, a decentralized cryptocurrency exchange protocol, BeInCrypto reported.
At the time of this writing, when searching for “uniswap”, Google actually brings several links to fraudulent sites with domains to the top: unswap.site, uniswapdex.org, unıswap.com.
When you enter any of the above domains, a similar copy of the original site opens (https://uniswap.org).
Join our telegram channel to keep abreast of the main trends in the crypto market.
So far, one of the main external differences when opening a fake site is redirecting to a currency exchange form.
In the original version of the Uniswap website, the index is exactly the landing page with links to the cryptocurrency exchange form or to the project documentation.
However, there is no reason to believe that cybercriminals will not change the templates of their sites to more closely resemble the original in the future..
Not Your Keys Are Not Your Cryptocurrency
The main difference between real Uniswap and phishing versions is the way the wallet is connected to exchange cryptocurrencies.
If in the original version, when a crypto wallet is connected, Uniswap either transfers to the wallet manufacturer’s website, or displays a QR code for pairing, then for fraudulent copies, when choosing any wallet, it gives an error with a request to enter a private key or mnemonic phrase.
Having obtained a private key or mnemonic phrase, fraudsters can easily withdraw funds from the victim’s wallet.
According to preliminary information, the attackers have already managed to steal at least 1.5 ETH in this way..
With a similar search query in the DuckDuckGo, Yandex and Bing search engines, no phishing copies were found.
At the time of this writing, Google Ads did not comment on advertising of fake services in any way.
This is not the first time that a service based on the Ethereum blockchain, Uniswap, has been hit by attackers..
Earlier, the BeInCrypto editorial staff reported that, due to the lack of moderation due to the decentralized architecture of the service, dozens of fraudulent tokens appeared on Uniswap posing as legitimate DeFi protocols, including 1inch.exchange, dYdX, bZx, and Tornado.cash.
What do you think? Share your thoughts with us in the comments and join the discussion in our Telegram channel.
All information contained on our website is published in good faith and objectivity, and for informational purposes only. The reader is solely responsible for any actions he takes based on the information received on our website..