BlockBeats News, December 31 — SlowMist released an analysis of security incidents in Q4 2025, which mentioned a new, more covert phishing method: even if users manually input the correct official domain, they may still be redirected to a phishing website. Some victims reported that despite entering the correct address, their browser automatically completed it as a spoofed domain forged by attackers. This is not due to user error, but because attackers previously polluted the browser’s history through ads, social media guidance, or false announcements. Once the phishing domain is stored in the browser’s autocomplete logic, the next time the user inputs that address, the browser will automatically redirect to a nearly identical fake website that mimics the official site. Additionally, malware attacks on computers are resurging. Attackers often use phishing links, private messages in social tools, or so-called “resource downloads” to stealthily implant malicious programs into the user’s local environment. Once infected, data related to wallets faces risks.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
