Web3 security firm Scam Sniffer has issued a warning that misspelling Sony’s blockchain project, Soneium, during a Google search could lead users to a dangerous crypto wallet-draining link. According to Scam Sniffer’s October 22 post on X (formerly Twitter), an ad appearing as a legitimate link for “Soneium” is actually a cleverly disguised phishing site.
Phishing Through Google Ads
The scam is triggered when users mistakenly search for “someium” instead of “Soneium,” leading to a sponsored ad that directs them to a malicious site equipped with a crypto wallet drainer. Scam Sniffer highlighted that this type of phishing attack can be hard to spot unless a user is specifically targeted, making it difficult for Google to detect and prevent such scams.
Scam Sniffer’s post underscores how easily phishing attacks can occur when users are not paying close attention, especially when slight spelling errors are made during searches. As of now, Google has not responded to inquiries about the reported phishing ad.
What Is Soneium?
Soneium is an Ethereum layer 2 blockchain developed by Sony Block Solutions Labs, a joint venture between tech giant Sony and blockchain company Startale Labs. It launched on its testnet in August 2024 and has been attracting attention in the Web3 space. Unfortunately, this attention has also drawn the interest of cybercriminals, who have targeted users with phishing schemes related to Soneium.
Growing Threat of Phishing in Crypto
This is not the first time crypto-related phishing scams have leveraged Google ads to lure unsuspecting users. In September 2024 alone, Scam Sniffer reported over $46 million stolen from 10,800 victims through phishing attacks. The firm also revealed that more than $127 million worth of cryptocurrency was stolen during the third quarter of 2024, with Ether wallets being the primary targets.
Back in April 2024, Scam Sniffer warned that over $4 million had been stolen from users who clicked on malicious links promoted through Google ads. Scammers had registered domain names nearly identical to legitimate crypto brands, making it hard for users to distinguish the real from the fake.
Protecting Yourself from Phishing Attacks
To avoid falling victim to phishing attacks like this, it’s essential to double-check URLs before clicking on any links, especially those found in sponsored ads. Additionally, enabling advanced security settings on your browser and using trusted sources for all crypto-related activities can help mitigate risks.
