Google Ad Scam Targets KeePass Password Manager, Crypto Users Beware


Google Ad Scam Targets KeePass Password Manager, Crypto Users Beware

Bad actors continuously exploit ingenious means to hack into the devices of unsuspecting victims to potentially siphon their cryptocurrency holdings. In a recent statement, X user named 23pds, a team member of the renowned blockchain security threat tracker SlowMist, disclosed a scam advertisement on Google.

The security threat researcher revealed that a fraudulent advertisement of the well-known open-source password manager KeePass ranked first on Google search. According to him, the bad actors sought to deceive unsuspecting persons as they camouflaged a phishing portal to KeePass’ official website.

Emphatically, clicking the advert leads the victim to a sham website that resembles KeePass. Consequently, the victim would download a piece of Trojan software, thinking to have gotten the original app from an “official’ source.

While 23pds posted the message in Chinese, the famous crypto-focused Chinese reporter Colin Wu narrated the incident in English to benefit the broader crypto community.

The well-known open source password manager KeePass appears in a Google search for an official advertising phishing website. Once users enter the fake official website, they will download Trojan software. According to @IM_23pds

— Wu Blockchain (@WuBlockchain) October 23, 2023

Given the potential threat to the crypto community, the security researcher cautioned crypto enthusiasts to pay extra attention to the safety of their investments. “Cryptocurrency users are advised to pay attention to security risks at all times,” the statement read.

Besides, the SlowMist team member highlighted that the attention of Google has been called to the fraudulent advertisement. He particularly stated that he submitted a complaint against the phishing website to the ad behemoth.

However, whether Google has taken action against the phishing ad is unclear, as the promotion could still be running in specific locations. Coin Edition reported a similar phishing Google ad targeted at the renowned crypto wallet Imtoken in April.

Disclaimer: The information presented in this article is for informational and educational purposes only. The article does not constitute financial advice or advice of any kind. Coin Edition is not responsible for any losses incurred as a result of the utilization of content, products, or services mentioned. Readers are advised to exercise caution before taking any action related to the company.


Leave A Reply

Your email address will not be published.