Fake Uniswap ads on Google drain $400K from crypto wallets

Scammers have stolen at least $400,000 from cryptocurrency wallets by running malicious Google Search ads that impersonate the decentralized exchange Uniswap. The phishing campaign, flagged by blockchain analytics platform DeFiLlama, targets users searching for Uniswap and directs them to fake websites that drain their funds.

The attackers purchased Google ads that appear at the top of search results for Uniswap-related queries. When users click on these ads, they are taken to a fraudulent site that mimics the real Uniswap interface. Once a user connects their wallet and approves a transaction, the scammer's contract siphons the funds. DeFiLlama described this tactic as "a common source of phishing attacks" in the crypto space. The incident underscores how even reputable platforms like Google can be exploited to facilitate crypto theft, as scammers leverage the trust users place in search engine results.

For crypto traders, this serves as a stark reminder to verify URLs and use bookmark links for frequently visited dApps. The stolen $400,000 represents a relatively small sum compared to major exchange hacks, but the method is scalable and could lead to larger losses if not addressed. Traders can monitor wallet drainer trends on NowPrice's live crypto dashboard to stay alert to emerging threats. Going forward, users should double-check domain names, avoid clicking on sponsored links for sensitive platforms, and consider using ad blockers or security extensions. Google has faced criticism for not doing enough to prevent such malicious ads, and the crypto community is calling for stricter ad verification policies.