Fake Uniswap Google Ads phishing drains $400K+ as scammers hijack sponsored results
Security researchers say scammers used “Fake Uniswap Google Ads” to phish users and steal funds for over a year. The attack targets people searching for Uniswap by placing fraudulent sponsored results above the real site. Fraudsters either buy ad space or compromise advertiser accounts, then outbid the genuine protocol to secure the top position.
The “Fake Uniswap Google Ads” links are engineered to evade automated checks. They use lookalike URLs and hidden routing code to deliver convincing Uniswap replica interfaces, then silently redirect victims’ on-chain activity through attacker-controlled infrastructure.
Community alerts and on-chain tracing from analyst “b-block” indicate at least ~$400,000 stolen. Two flagged wallets reportedly held 146 ETH combined (about $306,000 at the time of reporting). The nonprofit Security Alliance (SEAL) says related malicious ad-link activity surged in March, with $1.27 million stolen from March 13–30, while SEAL blocked 356+ malicious ad links—yet the pattern persisted.
For traders, the immediate UNI price impact is likely limited, but repeated phishing can create reputational risk and short-term liquidity drag for DeFi front-ends if user trust declines. Risk may also extend beyond Google Ads via other platforms and AI-linked scams delivering malware.
Neutral
This event is primarily a security and reputational threat: “Fake Uniswap Google Ads” can reduce user trust and cause short-term liquidity frictions for DeFi front-ends. However, the reports focus on theft via phishing rather than a protocol-level exploit or changes to Uniswap’s fundamentals, so any direct UNI price impact is likely limited and temporary unless incidents escalate materially. Persistent ad abuse and rising blocked malicious links also suggest ongoing risk, which can keep sentiment cautious, but it does not clearly imply bullish or sustained bearish fundamentals for UNI on its own.