There's a chance, if you don't care about / dislike NFTs (same), Web3 games (same), or cryptocurrency (three for three), you've never heard of Pudgy Penguins. But the NFT brand has somehow made its way onto Walmart shelves and launched a game this month, which has already been hit by a pretty nasty phishing scam.
As pointed out by Malwarebytes, the phishing site abuses the fact that the web browser game Pudgy World connects to users' crypto wallets to verify digital items.
Article continues below 
"For every browser extension wallet on the list, the phishing site renders an unlock screen built to match the real extension’s own visual identity, with the correct logo, colour scheme, button layout, and wording."
The cunning tricks don't end there. Malwarebytes notes it's a "page that plays dead for researchers" by testing hardware, checking if it's run in a virtual machine, and looking for automated tools. Effectively, the malicious element of the attack simply doesn't load if it suspects researchers are accessing it.
Crypto owners are among those most targeted by hackers, likely related to the amount of currency they have in their wallets, and how easy it is to obscure transactions through the blockchain. Just last month, we saw a social engineering scam deepfaking CEOs, using fake troubleshooting programs to steal cryptocurrency. Even Cloudflare's recent report on today's threat landscape echoes a focus on cryptobros.
Naturally, to avoid being caught up in any scam, be vigilant of sites you enter, what information you give away, and the people who talk to you. Scams are only getting smarter, so users and cybersecurity experts have to get just as smart in response.
1. Best gaming laptop: Razer Blade 16
2. Best gaming PC: HP Omen 35L
3. Best handheld gaming PC: Lenovo Legion Go S SteamOS ed.
4. Best mini PC: Minisforum AtomMan G7 PT
5. Best VR headset: Meta Quest 3
You must confirm your public display name before commenting
Please logout and then login again, you will then be prompted to enter your display name.
