User Loses $20K in a Web3 Scam, SlowMist Warns of Punycode Phishing Threat
By: blockchainreporter|2025/05/12 01:45:05
0
Share
SlowMist, a prominent firm for blockchain security and audit, has brought attention to a recent danger surrounding the Web3 digital wilderness. Reportedly, a Web3 user got scammed with more than $20,000 while interacting with a fake website, a lookalike domain of the ChangeNOW website. Through this loss, the growing risk and the sophistication of phishing attacks are spotlighted. There is an urgent need for proactive user education.SlowMist Security AlertA user lost over $20K after visiting a fake @ChangeNOW_io site.Notice the letter “e” in Pic 1?It’s a #Punycode attack — a trick we’ve covered in the blockchain dark forest selfguard handbook(Pic 2).Beware of browser recommendations — they may... pic.twitter.com/iSyJO9XefT— SlowMist (@SlowMist_Team) May 11, 2025Modern Phishing Schemes Deceive with Punycode ThreatThe in-questioned scam was planned with a Punycode attack. Punycode is a website attackers’ tactic to create a fake website address that resembles the real one. To advance this, they use special characters from other languages to create malicious URLs. In this attack, a single letter “Cyrilic e” was inserted in the fake website address to trick the victim.This tactic is barely noticeable for the common eye. The user, while considering it the legitimate ChangeNOW site, has lost over $20k. The complete detail of this method is covered in SlowMist’s “Blockchain Dark Forest Self-Guard Handbook”. It highlights the need for awareness in the rapidly evolving crypto landscape.SlowMist to Advise Cross-Check Verification to Outsmart Crypto ScamsSlowMist strongly recommends users to go with multi-step verifications before engaging with any Web3 platform. A complete reliance on the browser’s suggestion is not enough, even a single project link on their official X account is not trustworthy. SlowMist recommends users to check and validate the website’s domains utilizing platforms like CoinMarketCap, CoinGecko, or DefiLlama. These all platforms use to list the link of an authorized project.Moreover, for further protection, SlowMist advises checking an account’s legitimacy through its follower count, account age, and verification badges. However, the platform stresses the need for a multi-step verification strategy to avoid scams. With the continuous evolution of phishing tactics, the users’ defense mechanism is also enhanced. SlowMist further recommends users stay alert and count the trusted websites.
You may also like
What Is TradFi? How Crypto Traders Can Now Access Crude Oil, Gold, and Global Markets
What is TradFi in crypto? Learn how crypto traders can now trade crude oil, gold, stocks, and global markets directly with USDT on WEEX TradFi with 0 fee trading and a $150,000 bonus pool.
How WEEX Bridges Crypto and Football: A Deep Look at the LALIGA Partnership Inside the WEEX App
WEEX is not just a LALIGA sponsor. It’s a true partner. From iPhone Dynamic Island to LALIGA-themed app icons and smart posters, see how WEEX brings football passion into every trade — and builds a real bridge between crypto and sports.
FC Barcelona vs Real Madrid Preview: El Clásico – Can Barça Clinch the Title at Spotify Camp Nou?
FC Barcelona vs Real Madrid El Clásico match preview for May 11, 2026. Barça need just 1 point to win LALIGA. Can Madrid delay the trophy? Full preview inside.
At the Stripe conference, I saw the future of the AI economy
When agents cross the boundaries of tools and begin to make autonomous decisions and payments, a new business transformation has arrived.
Miners welcome a new life
Under the dual impact of the halving crisis and market crash, Bitcoin mining farms are fully transforming into AI data centers by leveraging existing power infrastructure, fiercely securing billions in orders from tech giants for a comeback.
Seven Important Judgments by Claude Code's Founder at the Sequoia Conference
Claude Code founder's in-depth sharing at the Sequoia Conference: AI is downgrading "coding" to a basic skill, cross-domain product insights have become the new core barrier, traditional SaaS moats are completely collapsing, and the golden era of startups disrupting large companies has already begun...
The payment moment of AI agents: Who will become the Stripe of the machine economy?
Cryptographic infrastructure and card organizations are not mutually exclusive; the winner is the unified gateway that connects both tracks simultaneously.
Morning Report | MoonPay acquires Solana's execution layer DFlow; Strategy releases Q1 financial report; Manta Network announces the termination of Manta staking program
Overview of Important Market Events on May 6th
Rented Tracks: What is this wave of stablecoin FX hot money really paying for?
What is truly being repriced in the market is the layer between stablecoin issuers and the real economy - the transaction layer.
Dialogue Velocity Eric: What is the stablecoin track that the CFO really wants?
Former Worldpay strategic executive enters the crypto space: Revealing how Velocity tackles the CFO's most troublesome issues of cross-border settlement and idle funds with "stablecoin payment accounts."
Strategy should have said that selling coins is not ruled out
If Saylor sells his coins, will the cryptocurrency market plummet?
How MegaETH Achieved a TVL of 700m Within a Week of TGE? Analyzing the Packaging Strategy
MegaETH created a flywheel with USDm, aiming to attract a large number of users and funds in the short term.
Futures Trading Hours: Trade Cryptocurrency 24/7 and Earn Back Up to 45% in Trading Fees
Learn futures trading hours and the best time to trade crypto futures. Discover 24/7 market insights, peak trading sessions, and how to earn back up to 45% in fees.
Why is a16z Crypto raising another $2.2 billion to heavily invest in Web3?
This round of funding bets on the transition of cryptocurrency from the infrastructure development phase to the phase of real user adoption. Whether focusing on cryptocurrency or crossing over to AI, this real money will only flow to those places that can turn technology into products.
Polymarket Underlying Algorithm Explained
It may be the only article on Twitter that clearly explains all the underlying design of Polymarket in plain language.
What do projects born in the crypto bear market do?
From January to April, RootData has recorded over 1,070 new projects, a decrease of about 32% compared to the same period last year.
a16z founder's Stanford lecture: Whenever Wall Street and Silicon Valley have different ideas, it's Wall Street that ends up being wrong
Ben Horowitz, co-founder of a16z, delivered a powerful talk: The two traditional moats of software in the AI era have been erased, and entrepreneurs must seek "new barriers" beyond code and UI.
Michael Saylor: After three consecutive quarters of losses, Strategy will sell Bitcoin to pay dividends
After MSTR's financial report showed continued net losses, Saylor changed his stance: Bitcoin is no longer "never to be sold" and can be used as a payment tool.
What Is TradFi? How Crypto Traders Can Now Access Crude Oil, Gold, and Global Markets
What is TradFi in crypto? Learn how crypto traders can now trade crude oil, gold, stocks, and global markets directly with USDT on WEEX TradFi with 0 fee trading and a $150,000 bonus pool.
How WEEX Bridges Crypto and Football: A Deep Look at the LALIGA Partnership Inside the WEEX App
WEEX is not just a LALIGA sponsor. It’s a true partner. From iPhone Dynamic Island to LALIGA-themed app icons and smart posters, see how WEEX brings football passion into every trade — and builds a real bridge between crypto and sports.
FC Barcelona vs Real Madrid Preview: El Clásico – Can Barça Clinch the Title at Spotify Camp Nou?
FC Barcelona vs Real Madrid El Clásico match preview for May 11, 2026. Barça need just 1 point to win LALIGA. Can Madrid delay the trophy? Full preview inside.
At the Stripe conference, I saw the future of the AI economy
When agents cross the boundaries of tools and begin to make autonomous decisions and payments, a new business transformation has arrived.
Miners welcome a new life
Under the dual impact of the halving crisis and market crash, Bitcoin mining farms are fully transforming into AI data centers by leveraging existing power infrastructure, fiercely securing billions in orders from tech giants for a comeback.
Seven Important Judgments by Claude Code's Founder at the Sequoia Conference
Claude Code founder's in-depth sharing at the Sequoia Conference: AI is downgrading "coding" to a basic skill, cross-domain product insights have become the new core barrier, traditional SaaS moats are completely collapsing, and the golden era of startups disrupting large companies has already begun...
Customer Support:@weikecs
Business Cooperation:@weikecs
Quant Trading & MM:bd@weex.com
VIP Program:support@weex.com
