SlowMist Warns of MetaMask 2FA Scam Stealing Wallet Recovery Phrases
Written by Ohris M. Greyoon, Blockchain & Crypto Expert
Source: Coinmarketcap
Updated: Jan 05 2026- New Scam Alert: SlowMist's Chief Security Officer has issued an urgent warning about a new 2FA scam targeting MetaMask users, which employs fake security verification pages to steal wallet recovery phrases, highlighting the increasing sophistication of cyber attackers.
- Significant Loss Reduction: In 2025, phishing-related cryptocurrency losses dropped 83% year-over-year to $83.85 million, with the number of affected users declining by 68%, yet attackers continue to refine their strategies to adapt to market changes.
- Evolving Attack Patterns: Despite the overall decrease in losses, attackers have begun exploiting Ethereum's Pectra upgrade by abusing EIP-7702-based malicious signatures, leading to coordinated attacks that drained hundreds of wallets, typically stealing less than $2,000 per address.
- Global Defense Network: Major wallet providers, including MetaMask, Phantom, WalletConnect, and Backpack, have partnered with the Security Alliance (SEAL) to launch a global phishing defense network aimed at identifying and blocking phishing threats in real time, enhancing user security.
About the author
Ohris M. Greyoon
Ohris M. Greyoon holds a Master’s in Computer Science from MIT and has 10 years of experience in blockchain technology and cryptocurrency markets. A pioneer in decentralized finance (DeFi) analysis, he leads Intellectia’s Crypto News, offering cutting-edge insights into digital assets.
