Crypto security firm Scam Sniffer has issued a serious alert after discovering that a malicious phishing website is currently appearing as the top sponsored result for the keyword “Aave” on Google.
The fraudulent site, hosted at https://aeva.eu.com, mimics the real Aave platform and has been carefully crafted to deceive users into believing it is legitimate.
What makes this scam particularly dangerous is that it is promoted via a paid advertisement, lending it an appearance of trustworthiness that could easily mislead even cautious users.
Once users interact with the site and authorize wallet permissions, their funds can be stolen instantly through malicious smart contract signatures.
Scam Site Imitates Aave Interface with False Incentives to Lure Victims
The fake site mirrors Aave’s official branding and design, presenting itself as a portfolio management and staking dashboard.
With attention-grabbing headlines such as “Launch Aave to Earn Rewards,” the site offers too-good-to-be-true incentives like gasless staking and high-yield returns.
The intent is to encourage users to connect their crypto wallets and approve transactions, actions that would ultimately grant scammers control over the user’s assets.
Because the ad is labeled as “Sponsored” and appears above the genuine Aave link (https://aave.com), many users may fall for the deception, unaware that they are interacting with a dangerous clone.
Also Read: Scam Alert: Scammers Target Crypto Users With Fake Aerodrome Finance Ads on Google
Google Faces Renewed Scrutiny Over Lax Crypto Ad Policies
This case has reignited concerns over Google’s advertising policy enforcement, particularly in the context of crypto-related content.
Despite repeated claims of tightening ad quality standards, Google continues to host deceptive crypto ads that bypass its screening systems.
With so many users depending on Google Search to access DeFi platforms like Aave, bad actors are exploiting these platforms by purchasing high-visibility ad placements.
The result is that Google inadvertently becomes a distribution channel for phishing scams, placing users at risk of irreversible financial losses through wallet drains and data breaches.
Also Read: Bitcoin Surpasses Google in Market Cap, Momentarily Becomes World’s 5th Largest Asset
Surge in Fake Ads: HyperLend, HyperSwap, and PumpSwap Also Targeted
The Aave impersonation is not an isolated case. Scam Sniffer and other crypto investigators have also identified similar threats involving other DeFi platforms.
Fake Google ads for HyperLend, HyperSwap, and PumpSwap have been reported, all leading users to phishing sites that steal private keys and trigger fraudulent transactions.
These malicious ads are becoming increasingly common, leveraging Google’s ad tools to place scams at the top of search results.
Experts warn that even experienced investors could be tricked, and urge the community to avoid clicking on ads, use bookmarks.
Also, ensure to verify URLs manually, and enable multi-factor authentication to safeguard their assets in this growing era of Web3-targeted cybercrime.
Also Read: Google Enforces Stricter Crypto Ad Policies In Europe Under MiCA Framework