Massive Phishing Attack: Victim Loses $24 Million in Crypto
Why Trust UsAt Coinfomania, we prioritize accuracy, transparency, and reliability. Our expert team consistently provides the most recent cryptocurrency news and developments. All information is thoroughly researched and unbiased, ensuring you make informed decisions. Trust us for comprehensive and well-analyzed crypto news, guides, and insights.
An Ethereum address with a record of interacting with DeFi protocols suffered significant losses in a phishing attack. The attacker stole over $24 million worth of cryptocurrencies by tricking the victim into visiting a malicious website and signing “increaseAllowance” transactions on their wallet.
Specifically, the cryptocurrencies stolen include $8.5 million worth of Rocket Pool ETH (rETH) and $15.6 million in Lido Staked ETH (stETH). stETH and rETH are Ethereum-based derivatives, allowing users to stake their ETH and earn rewards.
Blockchain security firm Scam Snifer uncovered the exploit, verifying that the hacker had started moving the stolen funds. Some amount was transferred to FixedFloat, an instant, fully automatic cryptocurrency exchange with Bitcoin Lightning Network support. The majority of the funds remain in three separate unconnected addresses. The scammer’s associated address is verifiably linked to many crypto phishing sites.
While the victim’s identity remains unknown, on-chain data revealed that the address drained by the scammer is active in the decentralized finance (DeFi) ecosystem and has provided liquidity amounting to $1.6 million on Uniswap V3. The address has also used multiple DeFi platforms, including Aave, 1inch, and Curve.
Rise in Crypto Phishing Attacks
Phishing is a common social engineering attack in which attackers masquerade as a legitimate entity through electronic communication services to trick victims into revealing sensitive information.
In this case, the attacker used fake emails and websites that impersonated two popular DeFi protocols, Lido Finance and StakeWise.
The latest incident further underscores the persistent threat of sophisticated phishing scams in the crypto sector. Just recently, some former users of FTX were hit by a phishing attack on their emails a week after Kroll, the claims agent in the FTX’s bankruptcy proceedings, suffered a cybersecurity breach that compromised the non-sensitive customer data of claimants in the ongoing bankruptcy case.
- Bitcoin Falls to $65K as Mt. Gox Transfers $2.8 Billion BTC to External Wallet
- News of Marathon Digital’s $138 Million Fine for Breach of Non-Disclosure Agreement Triggers a Bearish 2.5% of Its MARA Stock
- Are $530M Bitcoin ETF Inflows a Blessing or Caution?
- Metaplanet Teams with Hoseki for Real-Time Bitcoin Holdings Verification
- 10 Best Meme Coins To Invest in 2024
- Building Secure Blockchain Systems: An Exclusive Interview with ARPA and Bella Protocol CEO Felix Xu
- Building The “De-Facto Crypto Trading Terminal”: An Exclusive Interview with Aurox CEO Giorgi Khazaradze
- Building a New Global Financial System: An Exclusive Interview With Tyler Wallace, Analytics Head at TrustToken
- “Solana is the Promised Land for Blockchain” — An Exclusive Interview with Solend Founder Rooter
- El Salvador: Where The Bitcoin Revolution Begins With A Legal Tender
Lucky Ebosele
Related Posts
sidebar
