Bolster AI has identified a phishing campaign that impersonates Swapzone.io and uses spoofed “0-day exploit” emails to trick users into running a malicious JavaScript snippet in their browser. Sent through Emkei’s Mailer, the messages promise quick profits and push urgency to get victims to act immediately.
Running the code alters the victim’s browser view – showing fake boosted returns and countdown timers – while quietly redirecting transactions to attacker-controlled wallets. Bolster’s team notes the scheme is simple but highly effective, relying on curiosity and quick-profit bait to bypass user caution.