Scammers stole over $580,000 from major Web3 companies via a phishing attack.

The attackers impersonated companies like Cointelegraph, WalletConnect, and Token Terminal, using a malicious airdrop link.

The stolen funds, primarily Ether, are held in a multichain address.

Companies have cautioned users about unauthorized emails promising early access to new cryptocurrencies.

The phishing campaign may have gained access to MailerLite servers through a vulnerability.

Cybersecurity unit Blockaid is investigating the incidents.

WalletConnect, Cointelegraph, and MailerLite have taken action to block the malicious links and are conducting investigations.