SlowMist: MetaMask sees fake "2FA Security Verification" phishing attack, inducing users to enter their seed phrase

By: theblockbeats.news|2026/01/05 03:16:11

0

Share

copy

BlockBeats News, January 5th, SlowMist Technology Chief Security Officer @im23pds issued a warning that a new type of "2FA security verification" phishing scam has recently appeared in the MetaMask wallet. The scammer creates a fake MetaMask security alert page to guide users to complete a so-called two-factor authentication process, but their actual goal is to steal the mnemonic phrase. The process usually includes a forged security alert page, a fake 2FA verification interface with a countdown prompt, ultimately leading users to enter their wallet mnemonic phrase.

You may also like

WEEX Crypto News and the Dynamics of API Access

WEEX Crypto News and the Dynamics of API Access

Key Takeaways Managing API access effectively is crucial for seamless data extraction in cryptocurrency markets. Understanding rate limits…

Traveling? ‘Evil Twin’ WiFi networks can steal crypto passwords

Traveling? ‘Evil Twin’ WiFi networks can steal crypto passwords

Key Takeaways “Evil Twin” WiFi attacks occur when hackers mimic legitimate WiFi networks to steal sensitive user data.…

ThunderChain Resumes Legal Battle as Former CEO Chen Lei Accused of Embezzlement for Cryptocurrency Speculation - What Happened Back Then?

ThunderChain Resumes Legal Battle as Former CEO Chen Lei Accused of Embezzlement for Cryptocurrency Speculation - What Happened Back Then?

Today, Xunlei has restarted the lawsuit against its former CEO, Chen Lei, and his core team, accusing them of harming the company's interests, with the claim amount increased to 200 million RMB.

Current Landscape of Cryptocurrency Exchanges in 2026

Current Landscape of Cryptocurrency Exchanges in 2026

Key Takeaways The cryptocurrency exchange market is notably competitive, with each platform offering unique strengths to attract users.…

Error Prevented Content Extraction: Causes and Solutions

Error Prevented Content Extraction: Causes and Solutions

Key Takeaways Excessive requests can result in blocked access to data sources. Ensuring adherence to API usage policies…

A computation bug that allowed Truebit to be hacked for 8535 ETH

A computation bug that allowed Truebit to be hacked for 8535 ETH

Due to an integer overflow bug in the token purchase price calculation, the Truebit Protocol was exploited by an attacker through a recursive calling mechanism to repeatedly arbitrage, ultimately resulting in a loss of over 8500 ETH.

Vietnam Sets Mid-January Timeline for Pilot Crypto Exchange Approvals

Vietnam Sets Mid-January Timeline for Pilot Crypto Exchange Approvals

Key Takeaways Vietnam aims to regulate its growing cryptocurrency market by licensing pilot digital asset exchanges under a…

Ledger Faces Yet Another Data Breach — Customer Information at Risk

Ledger Faces Yet Another Data Breach — Customer Information at Risk

Key Takeaways Ledger, the prominent hardware wallet manufacturer, has experienced another data breach via its payment processor, Global-e,…

2025 Crypto Violence Retrospective: Increasing Assaults and Fatal Incidents in a Growing Market

2025 Crypto Violence Retrospective: Increasing Assaults and Fatal Incidents in a Growing Market

Key Takeaways Violent incidents involving cryptocurrency holders have escalated, with 2025 documenting 65 attacks, including 4 fatalities. The…

Court Sentences Criminal in Virtual Currency Fraud Case with Major Global Implications

Court Sentences Criminal in Virtual Currency Fraud Case with Major Global Implications

Key Takeaways A landmark case in Beijing reveals a significant cross-border telecom and internet fraud scheme involving virtual…

Rep. Torres Targets Insider Trading on Prediction Markets Following Profitable Maduro Bet

Rep. Torres Targets Insider Trading on Prediction Markets Following Profitable Maduro Bet

Key Takeaways A substantial Polymarket wager concerning Maduro’s capture has led Rep. Ritchie Torres to propose new legislation…

Cybersecurity Firm Warns of Shai-Hulud 3.0 Threatening the NPM Ecosystem

Cybersecurity Firm Warns of Shai-Hulud 3.0 Threatening the NPM Ecosystem

Key Takeaways SlowMist’s CISO has issued a warning about Shai-Hulud 3.0, a significant threat targeting the NPM ecosystem…

SlowMist Warns of Return of Shai-Hulud 3.0 Supply Chain Attack

SlowMist Warns of Return of Shai-Hulud 3.0 Supply Chain Attack

Key Takeaways SlowMist’s Chief Information Security Officer alerted the community about the resurgence of Shai-Hulud 3.0, an advanced…

Hackers Exploit Rainbow Six Siege Servers, Ubisoft Responds

Hackers Exploit Rainbow Six Siege Servers, Ubisoft Responds

Key Takeaways Hackers successfully breached Rainbow Six Siege, distributing enormous amounts of in-game currency. Players discovered unexpected changes…

Trust Wallet Investigates Browser Extension Security Incident

Trust Wallet Investigates Browser Extension Security Incident

Key Takeaways A recent security incident in Trust Wallet’s browser extension has affected 2,596 wallets, leading to the…

Trust Wallet Users Experience $7 Million Loss Due to Hacked Chrome Extension

Trust Wallet Users Experience $7 Million Loss Due to Hacked Chrome Extension

Key Takeaways Trust Wallet faced a significant security breach affecting its Chrome extension, resulting in over $7 million…

Trust Wallet Browser Extension Security Incident Leads to Losses

Trust Wallet Browser Extension Security Incident Leads to Losses

Key Takeaways Trust Wallet identified a significant security breach in its browser extension version 2.68. Approximately over $6…

Trust Wallet Hack Results in $3.5 Million Loss for Major Wallet Holder

Trust Wallet Hack Results in $3.5 Million Loss for Major Wallet Holder

Key Takeaways A significant Trust Wallet hack led to the theft of $3.5 million from an inactive wallet.…

WEEX Crypto News and the Dynamics of API Access

Key Takeaways Managing API access effectively is crucial for seamless data extraction in cryptocurrency markets. Understanding rate limits…

Traveling? ‘Evil Twin’ WiFi networks can steal crypto passwords

Key Takeaways “Evil Twin” WiFi attacks occur when hackers mimic legitimate WiFi networks to steal sensitive user data.…

ThunderChain Resumes Legal Battle as Former CEO Chen Lei Accused of Embezzlement for Cryptocurrency Speculation - What Happened Back Then?

Today, Xunlei has restarted the lawsuit against its former CEO, Chen Lei, and his core team, accusing them of harming the company's interests, with the claim amount increased to 200 million RMB.

Current Landscape of Cryptocurrency Exchanges in 2026

Key Takeaways The cryptocurrency exchange market is notably competitive, with each platform offering unique strengths to attract users.…

Error Prevented Content Extraction: Causes and Solutions

Key Takeaways Excessive requests can result in blocked access to data sources. Ensuring adherence to API usage policies…

A computation bug that allowed Truebit to be hacked for 8535 ETH

Due to an integer overflow bug in the token purchase price calculation, the Truebit Protocol was exploited by an attacker through a recursive calling mechanism to repeatedly arbitrage, ultimately resulting in a loss of over 8500 ETH.

Popular coins

Latest Crypto News

06:00

Massachusetts May Ban Kalshi’s Sports Prediction Contracts

BlockBeats News, January 21st, predicts that the prediction market platform Kalshi may face restrictions in Massachusetts. Local judge Christopher Barry-Smith has indicated that he will issue a preliminary injunction barring Kalshi from offering sports-related contracts to Massachusetts residents un...

06:00

The global situation is once again turbulent, with spot gold surging 10% in 20 days, breaking through $4800/oz.

BlockBeats News, January 21st, according to Bitget market data, spot gold has surged 10% in 20 days, breaking through $4800 per ounce for the first time, with a year-to-date gain of over $480.Amid renewed international tensions, US officials stated that despite withdrawing the strike against Iran la...

06:00

SKR Pre-market Price Plunges Over 53.4% in Nearly 24 Hours, Fully Diluted Valuation Now Only $76.9 Million

BlockBeats News, January 21st, Solana Mobile will officially open the SKR token airdrop claim in about half an hour (10:00 UTC+8). The pre-market price has plummeted over 53.4% in the past 24 hours, now trading at $0.00769, corresponding to a fully diluted valuation of only $76.9 million, while yest...

06:00

A trader liquidates a $304 million short position, aiming to take profit in the $83,000 to $85,000 range

BlockBeats News, January 21st, according to EmberCN monitoring, a trader with the address "0xD83...Fd7" has increased $3 million funds to $18.5 million in nearly 6 days through a cascading liquidation short. In the early morning today, the trader is still adding to the short position, currently hold...

06:00

USD1 Transaction Shoots Top of 24-Hour Trading Volume Leaderboard Meme Coin "Polar Bear 2026," with a 24-Hour Price Surge of Around 90%

BlockBeats News, January 21st, according to GMGN Monitoring, BNB Chain's 10-day "USD1 Trading Contest" has reached its sixth day. The top trading meme coin in the past 24 hours is "Polar Bear 2026," with a market value of about $8 million and a current price of around $0.008, representing a nearly 9...