Domain Security Reports

Search our database of flagged domains. Check if a website is a scam, phishing, or legitimate.

0
Total Tracked
0
Detected
0
Content Alive
0
Content Dead
0
VT Pending
WalletConnect Abuse
HIGH THREAT

Understanding and Combating WalletConnect Abuse

WalletConnect Abuse represents a significant threat, with 1,667 domains detected and 555 currently active. PhishDestroy has identified top TLDs including .com, .app, and .xyz, and leading registrars such as NICENIC INTERNATIONAL GROUP CO., LIMITED.

1,667
Domains Detected
HIGH
Threat Level

How This Attack Works

WalletConnect Abuse involves deceptive tactics to exploit users of cryptocurrency platforms. Understanding these steps can help in prevention.

STEP 1
Creation of Fake Domains
Attackers create fake domains that mimic legitimate cryptocurrency platforms to lure victims.
STEP 2
Deployment of Phishing Pages
Phishing pages are set up on these domains to capture user credentials and wallet information.
STEP 3
Execution of Malicious Code
JavaScript and other scripting languages are used to execute malicious code that intercepts user data.
STEP 4
Unauthorized Transactions
Stolen credentials are used to authorize transactions, draining victims’ wallets.

Technical Analysis

WalletConnect Abuse often involves the creation of phishing sites that mimic popular cryptocurrency service providers. Attackers use sophisticated scripts to manipulate the WalletConnect protocol, intercepting the authentication process. This includes the use of JavaScript to capture private keys and signatures when users attempt to connect their wallets. Infrastructure-wise, attackers frequently utilize content delivery networks like Cloudflare to host phishing sites, taking advantage of high availability and speed. Additionally, smart contracts are sometimes manipulated to automatically approve transactions that transfer funds to the attacker’s address without the victim's explicit consent.

Real Cases

The Opensea Phishing Incident (2024)
$2 million stolen
A phishing campaign targeting Opensea users resulted in significant financial losses and credential theft.
Vercel App Scam (2023)
$1.5 million stolen
Attackers used fake Vercel app domains to trick users into revealing wallet information, leading to unauthorized access.
Marketplace-Art Fraud (2024)
$3 million stolen
Fraudulent marketplace-art domains were used to deceive users into connecting their wallets, resulting in asset theft.

How to Detect

Unfamiliar domain names mimicking legitimate services
Requests for private keys or seed phrases
Unexpected transaction requests
Poor website design or misspellings
Limited or no HTTPS security

How to Protect Yourself

1 Always verify domain authenticity
2 Enable two-factor authentication
3 Use hardware wallets for transactions
4 Regularly update security software
5 Educate yourself on common phishing tactics

Frequently Asked Questions

What is WalletConnect Abuse?
WalletConnect Abuse involves exploiting the WalletConnect protocol to trick users into revealing their cryptocurrency wallet credentials through phishing tactics.
How much money has been stolen through WalletConnect Abuse?
To date, WalletConnect Abuse has resulted in millions of dollars in losses, with specific incidents causing damages ranging from $1.5 million to $3 million.
How do I protect myself from WalletConnect Abuse?
Verify domain authenticity, use two-factor authentication, and employ hardware wallets for added security against phishing attacks.
What should I do if I'm a victim of WalletConnect Abuse?
Report the incident to your wallet provider, change passwords immediately, and contact local authorities or a cybersecurity expert for assistance.
Data sourced from PhishDestroy threat intelligence database — 1,667 domains tracked for this threat type
Wallet Connect Abuse — Threat Intelligence Protocol Abuse Active Threat
1,667
Domains
261
Alive
1,382
Taken Down
6.9
Avg VT
15.7%
Alive Rate
92.8%
Detected
Since Mar 2024 874 domains with VT ≥ 5
WalletConnect Abuse 1,667 domains
live-mingiftin20.vercel.app
23 VTTaken DownOpenSea
opensea.io.marketplace-art.com
23 VTTaken DownOpenSea
live-mingiftin14.vercel.app
22 VTTaken DownOpenSea
live-mingiftin16.vercel.app
22 VTTaken DownOpenSea
livaction-mintgft12.vercel.app
21 VTTaken DownOpenSea
livaction-mintgft13.vercel.app
21 VTTaken DownOpenSea
live-mingiftin12.vercel.app
21 VTTaken DownOpenSea
live-mingiftin13.vercel.app
21 VTTaken DownOpenSea
live-mingiftin17.vercel.app
21 VTTaken DownOpenSea
livesimple-session25.vercel.app
21 VTTaken DownOpenSea
mandirienergikonsultan.com
21 VTTaken DownWalletConnect
metannask.aprisacv.com.mx
21 VTTaken DownMetaMask
xp-steth.org
21 VTLive1inch
mysterybox-nft-vd.vercel.app
20 VTTaken DownOpenSea
nxjohny-user-coinbaseaml-blurtrench.pages.dev
20 VTLiveCoinbase
skwise.net
20 VTTaken DownEthereum
animocabrands.page
19 VTTaken Down
app-lidopoints.com
19 VTLido
aster-dex.run
19 VTTaken Down
chainretificator.com
19 VTTaken Down
corev3-secure-b4df72d1-ff44b36-ae57.network
19 VTTaken DownWalletConnect
dashboard-lidopoints.com
19 VTLiveLido
livaction-mintgft10.vercel.app
19 VTTaken DownOpenSea
livaction-mintgft14.vercel.app
19 VTTaken DownOpenSea
multcoinprotocol.com
19 VTTaken Down
private-polymarket.com
19 VTTaken DownWalletConnect
symphonious-cannoli-76b929.netlify.app
19 VTTaken Down
unlock-wallet-trust.com
19 VTLiveTrustWallet
claim-almanak.org
18 VTTaken Down
eth-refund.pro
18 VTTaken Down
main-plasma.com
18 VTTaken Down
mint-nftboxc-three.vercel.app
18 VTTaken DownOpenSea
originyield.com
18 VTTaken Down
recompensation-kiln.fi
18 VTTaken Down
superformfoundations.org
18 VTAirdrop Scam
vro14roz.pages.dev
18 VTLiveaptos
www.walletconnect-support.duckdns.org
18 VTTaken DownWalletConnect
zoobit-bnb.net
18 VTLiveacross
aml-trust.info
17 VTTaken Down
aster-join.com
17 VTTaken DownWalletConnect
award-yieldusd.net
17 VTTaken Down
claim-momentum.com
17 VTTaken DownAML Scam
dapps-debug.firebaseapp.com
17 VTTaken DownWalletConnect
join-dein.com
17 VTTaken Down
layer2-chain.com
17 VTTaken DownPolygon
lidopoints.net
17 VTLiveLido
monzen.xyz
17 VTLivediscord
nekofortune.asia
17 VTTaken Down
nft-luckybox-02.vercel.app
17 VTTaken DownOpenSea
opensea.io.available-nft.com
17 VTTaken DownOpenSea
remittix-app.top
17 VTTaken Down
staking-ether-fi.com
17 VTTaken DownEtherFi
tuplyunified.pages.dev
17 VTTaken DownWalletConnect
uniswap30.vip
17 VTTaken DownUniswap
usdtoffers.com
17 VTTaken Downblast
vote-starknet.xyz
17 VTTaken DownStarknet
web.pancake.run
17 VTTaken DownPancakeSwap
web3walletconnect.digital
17 VTLiveWalletConnect
wlfilivedrop.xyz
17 VTTaken DownWorld Liberty Financial
xdefi.app
17 VTTaken Downbase
xz12312333.elysium-drainer.world
17 VTTaken DownWalletConnect
10bnb.cfd
16 VTTaken DownWalletConnect
abstract.rest
16 VTTaken DownWalletConnect
aerocoin.xyz
16 VTTaken Downaerodrome
airdrop-asterdex.io
16 VTTaken DownWalletConnect
aster-governance.com
16 VTTaken Down
aster-register.com
16 VTTaken Down
asterdex.gives
16 VTTaken DownAirdrop Scam
bitok.run
16 VTTaken DownAMLBot
bnb-zoobit.com
16 VTLiveacross
claim.omeletteswap.finance
16 VTTaken DownWalletConnect
connectcopy.top
16 VTTaken Downacross
crypto-francedeclaration.com
16 VTTaken Down
eligibility-alloca.org
16 VTTaken Downmonad
eligibility-mask.app
16 VTLiveacross
gift-contest-sea.com
16 VTTaken DownOpenSea
hyperpreps.com
16 VTTaken Down
impactxconnect.com
16 VTTaken Down
join-aster.com
16 VTTaken DownAML Scam
lineabuilderscheck.com
16 VTLiveLinea
mascorapp.com
16 VTTaken DownAptos
meek-support.netlify.app
16 VTTaken Down
mixquitylabs.com
16 VTTaken Down
monicdex.xyz
16 VTTaken DownMonad
nexus-coin.com
16 VTTaken Down
nft-luckybox-04.vercel.app
16 VTTaken DownOpenSea
nodeapp-serverlaunch.com
16 VTTaken DownWalletConnect
pancake.swapsfianance.top
16 VTTaken DownPancakeSwap
pepe-gain.net
16 VTTaken DownWalletConnect
phanbust.pro
16 VTPhantom
pooleth.top
16 VTTaken DownEthereum
register-cysic.org
16 VTWalletConnect
sale-monad.com
16 VTTaken DownWalletConnect
smartprotocolfix.firebaseapp.com
16 VTTaken DownWalletConnect
sorryuaredrrrrned.sbs
16 VTTaken DownAML Scam
sui-alkimi.xyz
16 VTTaken DownSui
verda.devroyale.xyz
16 VTTaken Down
web3-connect-wallet.webflow.io
16 VTTaken Downscroll
xp-lido.com
16 VTTaken DownLido
xp-steth.com
16 VTLive1inch
1 2 3 4 Next » Page 1 of 17