TechFlow reported on December 25 that Scam Sniffer issued a security alert: users reported being redirected to a fake Pudgy Penguins website when visiting a Singaporean news portal. Investigation revealed this is part of a larger malvertising campaign. The attack works as follows:
- Malicious ads are delivered through the Google ad network
- The ads load suspicious code from Adloox
- The code checks whether you have a web3 wallet
- If detected, it redirects you to a fraudulent site named pudqypenguin.
Currently, the attack targets only Pudgy Penguins users, but this method can easily be adapted to target other projects.
Users are advised to take the following precautions: enable ad blockers, use a dedicated browser for cryptocurrency-related websites, triple-check URLs before connecting wallets, and install the ScamSniffer plugin.




