SlowMist CISO: MetaMask is experiencing a new type of scam that impersonates "2FA security verification," tricking users into entering mnemonic phrases.

SlowMist's Chief Information Security Officer, 23pds (Shan Ge), issued a warning that a new type of scam has emerged on MetaMask, impersonating "2FA security verification" to trick users into entering mnemonic phrases. The fraudulent pages use similar domain names to redirect users to fake security alerts and 2FA verification processes, incorporating countdowns and "authenticity verification" elements to increase credibility. The final step requires victims to submit their wallet's mnemonic phrase, resulting in the theft of assets. Warning: Mnemonic phrases should only be used for initial wallet import or recovery; any webpage requiring verification is high-risk.