Microsoft discovered a new Web3 phishing fraud early this year.
Phishing attacks trick Web3 users into signing permits to spend their tokens.
CertiK recommends a token approval tool and Etherscan to withdraw authorization for unknown addresses.
The company recommended using CoinMarketCap or CoinGecko to check URLs.
Ice phishing provides criminals "nearly perfect anonymity" to steal from the crypto business.