Google busca anúncios falsos que roubam 400 mil dólares! Uniswap foi falsificado, roubando 1,27 milhão de dólares em duas semanas de março

On-Chain Analysts Discover Uniswap Fake Ads Surging in Google Search Results, Stealing at Least $400,000 (Approximately 146 ETH).
Security Organization SEAL States that in March, Google search phishing activities significantly increased, stealing $1.27 million in just two weeks.
(Background recap: Uniswap announced V4 version launching this year. What core changes will the upgrade bring?)
(Additional background: Half a year, $2.1 billion stolen! Security report: Hackers shift focus from smart contracts to general users, four tips to protect crypto assets)

On-chain analyst b-block pointed out in a X post on Monday that a fake website disguised as the decentralized cryptocurrency exchange Uniswap is stealing funds from multiple wallets, with confirmed stolen amount at least $400,000.

Web3 marketing agency Green Dots co-founder Stacy Muur confirmed on X that these funds are stolen through phishing ads on Google search, sharing screenshots of paid ads in search engines. She emphasized: "Google has ignored this problem for years, fake links keep ranking ahead of real links, and users’ funds are just being stolen."

According to Etherscan data, two flagged addresses hold a total of 146 ETH, worth about $306,000.

Phishing in Google Search Surged in March, Stealing $1.27 Million in Two Weeks

Cryptocurrency data platform DeFiLlama states, "Google fake ads are a common source of phishing attacks." Non-profit crypto organization Security Alliance (SEAL) released a report in April indicating that phishing activities on Google search saw a "significant increase" in March.

SEAL points out that attackers operate these fake ads by paying for them or hacking legitimate ad accounts, disguising as popular crypto protocols, and bidding high in Google’s "Sponsored Results" section to push out genuine protocols. These phishing ads use seemingly normal URLs to evade Google’s automatic checks, while hidden iframes load malicious code that Google’s detection systems cannot see.

Victims clicking on these ads are led to realistic copy pages of crypto applications, with all web traffic secretly redirected to servers controlled by attackers. SEAL reports that from March 13 to 30, a total of $1.27 million was stolen. As of the report’s release, SEAL had blocked over 356 malicious ad links.

SEAL warns: "There are no signs of this attack slowing down; we continue to receive reports from affected users."

Not Just Cryptocurrency: Fake Ads Have Spread to Other Fields

Besides crypto protocols, Google ads are also used for malware promotion. A report in early May showed that attackers used Google ads and AI chatbot Claude’s shared conversations to launch "malicious ad" campaigns targeting Mac users.

Facebook is also heavily affected by fake ads. Security software company Malwarebytes reported in February that scammers placed paid ads on Facebook that appeared to be Microsoft official promotions, directing users to near-perfect copies of Windows 11 download pages, which deploy malware designed to steal cryptocurrencies and account credentials.

This serves as a clear warning for crypto users: before clicking any search result, verify that the ad link points to the correct website — the first line of defense against fund loss.