MetaMask Support posted on Twitter that it reminded users to pay attention to the "address poisoning scam". The attacker "poisoned" the transaction history by sending tokens worth $0 to the user's wallet. Scammers use a dummy address generator to generate a wallet address and match the first and last few characters of the victim's wallet address, allowing unsuspecting users to send funds to the wrong imitation address. While this would not allow a hacker to gain access to a user's wallet, someone who might make a habit of copying wallet addresses from transaction history before sending digital asset balances could be sending funds to the wrong address.

MetaMask reminds users to always be careful and double-check their transactions before sending their balance. It's a good idea to check every character of your wallet address to make sure you're sending funds to the correct wallet. In addition to this, users are advised to stop copying wallet addresses from transaction history and use their address book when sending digital assets. (Cointelegraph)