TON Blockchain Faces Increasing Phishing Attacks, SlowMist Reports
The Open Network (TON), a layer-1 blockchain developed by Telegram, is currently experiencing a rise in phishing attacks. SlowMist, a blockchain security firm, issued a warning on June 23 regarding the escalating threats to the TON ecosystem. This has left decentralized applications and millions of users vulnerable to fraudulent activities.
Yu Xian, the founder of SlowMist, highlighted the recent security breaches on the TON blockchain. Xian noted that the ecosystem has become an attractive target for phishing attackers due to its rapid growth this year. The vulnerability of the TON ecosystem allows scammers to gain access to message groups, where they use phishing links and bot forms to deceive and steal from unsuspecting users.
Xian expressed concern about the risk faced by Telegram users with anonymous numbers. These accounts, introduced by Telegram in late 2022, are not tied to a SIM card. If these accounts are compromised through phishing attacks, users may lose access to their Telegram accounts. This risk is especially serious for users who have not enabled additional security measures such as independent passwords or two-step verification.
While the introduction of anonymous numbers was initially seen as a privacy-enhancing feature, it now poses a potential threat to user security. The use of blockchain-based anonymous numbers, available on platforms like Fragment, may increase vulnerability to phishing attempts.
The warning about the TON phishing attack is part of a broader trend of vulnerabilities in blockchain-based applications integrated with messaging platforms like Telegram. Solareum, a Solana-based Telegram trading bot, recently shut down following a security breach that resulted in the theft of over 2,800 SOL, worth approximately $520,000, from more than 300 Solana users. In February, Blowfish, a Web3 security company, identified two new Solana drainers capable of sophisticated attacks. Additionally, Scam Sniffer, a cryptocurrency security firm, reported that bad actors stole $295 million from over 300,000 users in 2023 using advanced techniques to deceive users and steal their funds.
The increasing number of phishing attacks on blockchain ecosystems raises significant concerns about the security of decentralized applications and the protection of user funds. It is essential for users to remain vigilant and adopt additional security measures to safeguard their digital assets.
