Jan 05, 2026
Fake MetaMask 2FA security checks lure users into sharing recovery phrases
According to SlowMist, attackers are impersonating Metamask, aiming to steal users’ secret recovery phrases.
Crypto investors are being targeted by a new phishing campaign that impersonates MetaMask and tricks users into handing over their wallet recovery phrases, according to the blockchain security firm SlowMist.
The attackers are impersonating a two-factor authentication (2FA) security verification flow, which redirects users to fraudulent domains through fake security warnings that request users’ seed phrases.
When a user shares a wallet recovery phrase, the funds from the wallet are stolen, warned SlowMist's chief security officer, 23pds, in a Monday X post.
Source: Cointelegraph →Related News
- Feb 24, 2026
Ethereum Foundation starts staking ETH as client diversity concerns persist
- Feb 24, 2026
‘Bitcoin scarcity is dead’: Crypto executives push back on viral claim
- Feb 24, 2026
Solo Bitcoin miner bags over $200K block reward using rented hashrate
- Feb 24, 2026
Vitalik sells 17K ETH in one month after earmarking $45M for privacy
- Feb 24, 2026
Stablecoin stagnation, tariffs a headwind for Bitcoin prices, analysts say