Metamask Warned Apple Users About The Risk Of Losing Funds
The MetaMask team has warned non-custodial wallet users about the risks of storing data in Apple iCloud due to possible phishing attacks.
🔒 If you have enabled iCloud backup for app data, this will include your password-encrypted MetaMask vault. If your password isn’t strong enough, and someone phishes your iCloud credentials, this can mean stolen funds. (Read on 👇) 1/3
— MetaMask 🦊💙 (@MetaMask) April 17, 2022
“If you have enabled iCloud backup of app data, it includes password-protected MetaMask storage. If it’s not secure enough and someone phishes your iCloud data, it could lead to asset theft.”
The wallet developers advised to disable iCloud backup for MetaMask in the device settings.
You can disable iCloud backups for MetaMask specifically by turning off the toggle here:
Settings > Profile > iCloud > Manage Storage > Backups.
2/3— MetaMask 🦊💙 (@MetaMask) April 17, 2022
The MetaMask statement came after an incident with one of the collectors of non-fungible tokens. On April 15, he revealed on Twitter that he had lost $650,000 worth of NFTs.
Hey y’all, let’s see how amazing this community can be. My entire wallet was just stolen. Totally wiped out,
MAYC 28478, MAYC 8952, MAYC 7536
Gutter cat 2280 , 2769, 2325
Also stole 100k in ape coin.
Looking for all the help I can get.100kreward @BoredApeYC @GutterCatGang
— Domenic Iacovone (@revive_dom) April 14, 2022
“This is how it happened: I got a call from Apple, literally from Apple (by incoming ID). [I] called back because I suspected a scam and it was an Apple number. So I believed them. They requested a code sent to my phone and two seconds later my entire MetaMask was empty,” the user wrote.
Later, the founder of the DAPE NFT project under the nickname Serpent explained that unknown people were able to carry out the theft because of the MetaMask seed phrase stored in iCloud.
Read Also: Vitalik Buterin Supported The Idea Of ​​Twitter Takeover By Elon Musk
2/ verification code to prove the owner of the Apple ID account. After giving the 6 digit verification code, the scammers hung up and his MetaMask wallet was wiped, with over $650,000 stolen. How did they access his MetaMask wallet? Let’s look into what happened 👇 pic.twitter.com/NMm6wkUMbM
— Serpent (@Serpent) April 17, 2022
“The scammers requested a password reset for the victim’s Apple ID. With the 2FA code, they gained control of the Apple ID and access to iCloud, which opened the way for them to the victim’s MetaMask, ”the author of the thread explained.
He advised using a cold wallet for storage, not sharing confirmation codes with anyone, and recalled that information about an incoming number is “easy to fake.”
“Companies like Apple will never call you,” Serpent said.
Recall that in March the number of monthly active users of the non-custodial crypto wallet exceeded 30 million .
In the same month, the developers added support for Apple Pay and gas-free transactions to the new version of MetaMask .
Leave a Reply