NEWNow you can listen to Fox News articles!
Recently you may have received disturbing emails as shown below from “sharfharef” titled “Wallet Verification Required” which uses MetaMask's logo and branding.
These messages alert you to verify your wallet by clicking on a link, but scammers use these emails to steal your cryptographic information.
Subscribe to my FREE CyberGuy Report
Get my best tech tips, breaking security alerts, and exclusive offers straight to your inbox. Plus, you'll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
FBI warns email users of increased holiday scams
Fraudulent emails posing as MetaMask alerts trick users into revealing their crypto wallet details. (Photographer: Wei Leng Tai/Bloomberg via Getty Images)
What is MetaMask and why scammers love it
MetaMask is a popular crypto wallet and browser extension that allows you to store tokens and connect to blockchain applications on networks like Ethereum. Because MetaMask is widely known and trusted, criminals impersonate it in phishing campaigns that ask users to “verify” wallets and then collect recovery phrases or keys.
What makes this email a wallet verification scam?
The scam email copies MetaMask's visuals and is even routed through a Zendesk address to look more professional, however the “Verify Wallet Ownership” button points to an unrelated domain that has nothing to do with MetaMask. This mismatch between branding and destination is a major red flag in crypto phishing attacks. It also relies on classic pressure tactics and vague corporate language. On the body it is written:
Dear valued user,
As part of our ongoing commitment account security, We require verification to confirm ownership of your wallet.
This important security measure helps protect your assets and maintain the integrity of our platform.
Action required: December 03, 2025
Your prompt attention to this review will help ensure uninterrupted access to your account and maintain the highest level of security.
Phrases such as “Dear User,” “Basic Security Precautions,” and “Action Required” are common in phishing emails that impersonate MetaMask and threaten restrictions if you do not comply. Genuine MetaMask support will direct you to the Metamask.io website or official apps and will never ask you to reveal your secret recovery phrase through a link in an unsolicited email.
In this case, the message even claims to come from “MetaMask.io ([email protected]).”
Why Mentioning Zendesk Can Be Misleading
Zendesk is a legitimate customer support platform that many companies use to manage tickets and notifications. Fraudsters sometimes send fake alerts through these services or spoof similar addresses so that the messages appear to be genuine support tickets, which can deceive users who associate the Zendesk brand with trust.
In this case, having a Zendesk-style address does not make the message secure, since the link still leads from the official MetaMask website and asks to respond to artificially created urgency.
NEW EMAIL SCAM USES HIDDEN SYMBOLS TO PASS FILTERS
Phishing messages asking MetaMask to “verify wallet” direct victims to fake websites that steal recovery phrases. (Photo by Morteza Nikubazla/NurPhoto via Getty Images)
How to protect yourself from fraudulent wallet confirmation emails
Taking the right precautions can protect your digital wallet and personal data from scammers.
1) Do not click on suspicious links and use powerful antivirus software.
Do not click buttons or links in unexpected wallet confirmation emails, even if they contain the MetaMask logo. Instead, open your browser and enter Metamask.io yourself or use the official mobile app to check for real alerts. Also set strong antivirus software to detect malicious links, fake sites, or malware that is trying to intercept your keystrokes.
The best way to protect yourself from malicious links that install malware and potentially access your personal information is to install powerful antivirus software on all your devices. This protection can also alert you to phishing emails and ransomware, keeping your personal information and digital assets safe.
Keep it updated so it can block new phishing infrastructure and known scam domains.
Get my picks for 2025's top antivirus protection winners for your Windows, Mac, Android, and iOS devices at Cyberguy.com.
2) Use only official sites.
Before logging in, always make sure that the address bar displays the official MetaMask domain or the genuine website of your wallet provider. If an email link sends you to a domain that looks strange, close it immediately.
3) Keep your credentials secret
Never enter your recovery passphrase, password, or secret keys into a site you arrived at via email. MetaMask support will not ask for this information, and anyone who receives it will be able to empty your wallet.
4) Enable two-factor authentication.
Include two-factor authentication (2FA) wherever your exchange or linked accounts support it, since codes from the application or key create a barrier even if the password is leaked. Store backup codes safely offline to prevent criminals from accessing them.
REAL APPLE SUPPORT LETTERS ARE USED IN NEW PHISHING Scam
Criminals are spoofing Zendesk-style addresses to make fraudulent MetaMask support emails appear legitimate. (Photo by Felix Zahn/Photothek via Getty Images)
5) Use the data deletion service
Data deletion services can help reduce the exposure of personal data from data brokering sites, which attackers use to target victims by name and email address. Less public information makes it difficult for phishers to create convincing wallet alerts tailored specifically to you.
While no service can guarantee complete removal of your data from the internet, a data removal service is indeed a smart choice. They're not cheap, and they're not cheap. your privacy. These services do all the work for you, actively monitoring and systematically removing your personal information from hundreds of websites. This is what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk that scammers will link leaked data to information they can find on the dark web, making it harder for them to target you.
Check out my top data removal services and get a free scan to see if your personal information has already been published online by visiting Cyberguy.com.
Get a free scan to see if your personal information has already been published online: Cyberguy.com.
6) Flag suspicious emails
Flag any fake Metamask messages like spam or phishing in your inbox so that filters learn to block such attacks. You can also report phishing attempts through MetaMask and your email provider to help protect other users.
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Kurt's key takeaways
Emails like the one from “sharfharef” use MetaMask's verified name, sophisticated design, and unsettling language to push you to click before you think. When you slow down the sending, check the sender, read the wording and confirm the site address, you deprive scammers of their biggest advantage – panic.
What questions do you still have about protecting your digital accounts and crypto wallets that you want us to answer in the next article? Let us know by writing to us at Cyberguy.com.
Subscribe to my FREE CyberGuy Report
Get my best tech tips, breaking security alerts, and exclusive offers straight to your inbox. Plus, you'll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
Copyright CyberGuy.com 2025. All rights reserved.
