Phishing alert: PeckShield detects scam websites for Solana based STEPN

Lavina Daryanani
Source: Coincu News

Living in the digital age comes with both pros and cons. While information can be accessed within the snap of a finger, a host of manipulation and privacy concerns continue to haunt users.

Hackers, on their part, face the urge to unlawfully penetrate the web on a daily basis. Whether cracking digital security for good or ill, they tend to be people who are manipulative, cynical, and deceitful—at least that’s what research’s has found out.

In the crypto space, hacks keep taking place on a frequent basis. Some get detected, while the rest go undetected. The pace of the rise in such activities has, however, increased substantially of late. When compared to January’s numbers, the stolen funds [blockchain wise] witnessed a massive spike last month, thanks to the Ronin hack.

With less than a week left for this month to conclude, April’s funds’ stolen numbers have been able to remain suppressed under $250k.

Source: The Block

Alerts issued by detectives and security agencies like PeckShield and zachxbt have been able to hit the nail on the head by pointing out red flags associated with scams during their initial stages themselves.

Phishing alert on Solana based platform

Solana-based STEPN has been the talk of the crypto-town over the past few days. As such, STEPN is an Australia-based startup that offers a blockchain-based fitness/gaming app. It allows users to buy sneaker NFTs that are valid for a certain amount of time. During the ownership period, users can essentially earn the platform’s native tokens as a reward.

Hackers have taken note of the platform’s growing popularity, and have made it one of its latest targets. Peckshield, a prominent blockchain security firm, took Twitter to bring to light that there are numerous phishing websites for the Solana-based Web3 lifestyle app STEPN.

Per the firm, hackers insert a fake MetaMask browser plugin through which they can steal seed phrases from unsuspecting STEPN users. When they obtain the seed phrase, they gain complete control over the platform’s user’s dashboard, where they either connect the stolen wallets to their own or “claim” a giveaway.

Outlining the same in its latest tweet, PeckShied noted:

The blockchain security firm has urged STEPN users to contact support if they detect anything suspicious with their accounts. Under the said tweet, some users underlined that they had encountered issues, reported them to support, and got them resolved.

A user with the username Cristian Ronaldo said,

“I was experiencing Just the same issue but was fixed in minutes soon as I reached out to the support team with the link below, give it a try too”