Wallet Drainers, hidden Google and Twitter ads, single wallet stolen $20 million USD

The latest report from cybersecurity firm Scam Sniffer reveals that wallet-draining tool Wallet Drainers has been rampant in the past 9 months, with a single victim losing over $20 million. Scam advertisements are widespread on Google and Twitter.

Earning over $80 million! Phishing tool Inferno Drainer announces closure: Nothing lasts forever

In March of this year, Scam Sniffer discovered fraudulent advertisements imitating DeFi protocol websites on Google search pages, such as Zapper and Lido shown in the image below.

After analysis, it was found that some phishing advertisements on Twitter were similar to the ones on Google Ads, both using One Wallet Drainer.

Scam Sniffer also pointed out that out of the 9 ads appearing on the timeline, 6 of them were Wallet Drainers, accounting for over 60%.

These phishing link advertisements employ clever techniques to bypass platform ad review, which can deceive even experienced cryptocurrency users.

Scam Sniffer pointed out that fraudulent advertisements only target specific regions with embedded phishing links. When users from other regions open the links, they may see a legitimate website, making ad review more difficult for the platform.

Phishing ads make the links in the ads appear to come from official domains, but the final destination after clicking is a phishing website.

For example, users may think they clicked on an advertisement for the official StarkNet website, but they are actually redirected to a phishing website.

Scam Sniffer monitored 10,072 phishing websites related to the Wallet Drainer over the past 9 months, with peaks in fraud occurring in May, June, and November of this year.

The Wallet Drainer has stolen approximately $58.98 million from 63,210 victims over the past 9 months.

List of Main Victims:

Based on the sales information found by Scam Sniffer, the Drainer in this article directly sells program codes and modules, unlike other Wallet Drainers that charge a 20% management fee. This indicates that developers believe it is more profitable to sell fraudulent tools than to conduct phishing activities themselves.