In the world of cryptocurrencies, where anonymity and decentralization are the law, users are used to relying on their own skills. But what if the threat comes not from hackers in the dark web, but from a familiar search engine result? This is exactly what happened in the latest high-profile incident involving Uniswap.

Unknown attackers launched an advertising campaign in Google that visually and functionally mimics the interface of the popular decentralized exchange (DEX). The result was catastrophic for trusting users: over $400,000 in cryptocurrency has already been stolen.

The Mechanics of the Scam: From Click to Loss of Funds

The scammers' scheme is simple and effective. An expert under the pseudonym b-block revealed the details of the attack: users searching for the official Uniswap mistakenly click on a paid ad. They are redirected to a clone site that looks identical to the original. As soon as the victim connects their wallet to trade, a malicious script instantly drains it.

At the time of the investigation, 146 ETH (approximately $306,000) was recorded on two addresses associated with this operation. This is only part of the sum, as some funds have already been withdrawn or moved.

The Search Engine's Blind Spot

Researcher Stacey Moore raised the issue of a systemic problem. Phishing ads have occupied the top search results for years, pushing out official links to crypto projects. Google, essentially, becomes an unwitting accomplice, monetizing traffic that leads into a trap.

Security Alliance (SEAL) specialists confirm the scale of the problem. Just at the end of March, they blocked more than 356 malicious links. The total damage from such campaigns over a short period reached $1.27 million.

How Hackers Bypass Moderation?

Attackers use two main methods: buying ads through compromised accounts or direct purchases. The main trick is the use of hidden frames. At the time of Google moderators' review, the site may show the correct URL, but for the real user, malicious code is loaded. The search engine's automated systems do not see the trick, and the ad gets the green light.

This story is just the tip of the iceberg. In April, $9.5 million was stolen in a similar way through a fake Ledger Live app in the App Store. While users look for convenience, hackers are refining their social engineering methods, turning familiar search queries into dangerous traps.