Bitget App
Trade smarter
Buy cryptoMarketsTradeFuturesCopyBotsEarn
Victim Loses $4.2 Million to Yet Another Phishing Attack: Report

Victim Loses $4.2 Million to Yet Another Phishing Attack: Report

CryptopotatoCryptopotato2024/01/23 05:55
By:Chayanika DekaMore posts by this author

A user lost $4.2 million in a crypto phishing scam as a result of malicious opcode malware.

An unidentified individual recently suffered a significant loss of aEthWETH and aEthUNI, totaling $4.2 million, falling victim to a crypto phishing attack that leveraged a falsified ERC-20 permission signature.

According to the Web3 security firm Scam Sniffer, the victim unwittingly signed approvals for multiple transactions using an ERC-20 authorization manipulated by an opcode contract to bypass security alerts.

This deceptive tactic involved generating new addresses for each signature and redirecting the funds from the victim to an unauthorized address before the transactions were executed.

For the uninitiated, opcode malware, a type of malicious software exploiting operation codes in scripting languages of different platforms, is at the core of such attacks.

Its ability to reroute funds, authorize unauthorized expenditures, and immobilize assets within smart contracts makes it a potent threat, often eluding traditional security measures and complicating detection and removal efforts.

insane! someone lost $4.20m worth of aEthWETH and aEthUNI to crypto phishing about 40 minutes ago! https://t.co/PqtYbfjrW5 pic.twitter.com/2Nhx4HDQcK

— Scam Sniffer | Web3 Anti-Scam (@realScamSniffer) January 22, 2024

Experts suggest that opcode malware can seize command over a victim’s CPU, memory, and system resources by capitalizing on weaknesses in the operating system, applications, or other software operational on the victim’s computer.

Upon infiltrating the system, the malware can initiate a sequence of instructions presented as machine code, enabling it to carry out malicious activities.

Opcode malware can also use system resources to mine cryptocurrency or launch distributed denial-of-service (DDoS) attacks.

There has been a consistent monthly rise in phishing activities over the past year, marked by phishing scammers adopting increasingly advanced tactics to circumvent security measures.

Even crypto whales with substantial market-influencing holdings have fallen prey to fraudsters, losing millions of funds in the process.

You Might Also Like:

  • Crypto Wallet Co-Founder E xplains How He Fell Victim to a Phishing Attack
  • Uniswap Scare: CertiK's Hacked Account Spreads False Vulnerability Claim
  • Friend.Tech Targeted Again: Elaborate Scheme on Phishers Posing as Journalists Uncovered
0

Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.

PoolX: Locked for new tokens.
APR up to 10%. Always on, always get airdrop.
Lock now!

You may also like

BTC breaks through $79,000

Cointime2024/11/10 05:11

BTC breaks through $78,000

Cointime2024/11/10 04:55

APT breaks through $11

Cointime2024/11/10 04:55