Popular crypto wallet provider MetaMask has warned investors against an ongoing phishing attempt in which scammers attempt to contact users via NameCheap’s third-party upstream system for emails.
On the evening of February 12, web hosting company NameCheap detected someone abusing its third-party service to send some unauthorized emails, emails that were directed at MetaMask users. Namecheap described the incident as an "email gateway issue".
In a proactive alert, MetaMask reminds its millions of followers that it does not collect know-your-customer (KYC) information and will never be contacted via email to discuss account details. The phishing emails sent by the hackers contained a link that opened a fake MetaMask website requesting the use of the Secret Recovery Phrase "to keep your wallet safe."
The wallet provider advises investors not to share the seed phrase as it hands over full control of user funds to hackers. NameCheap further confirmed that its services were not compromised and no customer data was exposed in the incident. Within two hours of receiving the initial notification, NameCheap confirmed that its mail delivery has resumed and that all communications thereafter will be from official sources.
However, the main issue related to the mailing of unsolicited emails is still under investigation. Investors are advised to recheck website links, email addresses and contacts when dealing with communications from MetaMask and NameCheap.
