A sophisticated crypto-phishing campaign is abusing Google Forms to impersonate exchanges and steal wallet credentials under the guise of a fake 1.275 BTC payout. Using Google’s own SMTP servers, the scam bypasses spam filters and silently exfiltrates data via embedded Apps Script WebHooks. Analysts warn this low-tech, high-impact attack marks a new wave in social engineering threats targeting crypto users.

‍