Steakhouse Financial front-end breach exposes users to phishing scam

DeFi risk curator Steakhouse Financial has been hacked and its website and app are now being used to host a phishing scam.

Steakhouse disclosed the breach Monday morning and warned that any new users interacting with the website or app are likely interacting with a malicious version implemented by the hackers.

The attack appears to have affected just the front-end of operations, as Steakhouse assured users, “No deposits are at risk. No contracts are affected. All Steakhouse depositors are safe.”

“We are working to restore the frontend as soon as possible,” the firm said.

Steakhouse co-founder, Sébastien Derivaux, warned crypto users to avoid the website until further notice.

Various crypto firms offered alternative services and safety assurances for customers with funds at Steakhouse.

Others found humor in the incident, with one user asking, “Does phishing on Steakhouse make this a surf and turf attack?”

At the time of writing, neither Steakhouse Financial or its CEO have shared any further updates on the incident.

Steakhouse Financial housing a crypto drainer

Crypto security firm Blockaid claims that the Steakhouse attackers are utilizing code from one of the “largest active wallet drainer operations onchain” known as Angelferno, or Angel Drainer.

Earlier this month, AI crypto firm GAIB fell victim to a social engineering scheme that gave hackers access to its domain, where they implemented a copycat website kitted with Angelferno.

Drainers work by stealing a user’s crypto after they sign a malicious transaction that gives hackers full access to withdraw their funds.

Blockaid was able to help GAIB detect the malware, and the malicious site was gone in roughly seven hours, with no apparent user losses.