A current phishing assault has left a crypto investor reeling from a lack of 501 ETH, valued at roughly $2 million, staked by way of liquid restaking protocol Ether.Fi.
On-chain information reveals that the theft occurred earlier at present and concerned two transactions. In a single transaction, 426 ETH have been siphoned, adopted by one other 75 ETH in a subsequent transaction. On the time of the assault, these stolen property have been valued at roughly $1.6 million and $276,000, respectively.
On account of the theft, the pockets’s web value plummeted by over 99.93%, leaving them with solely $1,453.
Rip-off Sniffer, a Web3 safety platform, recognized the assault as using an “IncreaseAllowance” transaction, a signature generally related to phishing schemes that allow attackers to entry funds with out the sufferer’s authorization.
Over $100 million misplaced to phishing scams
This incident happens amidst a surge in phishing scams concentrating on the business this yr.
In response to information offered by Rip-off Sniffer, $104 million was defrauded from roughly 97,000 crypto customers within the preliminary months of this yr resulting from phishing assaults. In January, losses amounted to $57.7 million, adopted by $46.8 million in February.
A breakdown of the assaults reveals that Ethereum customers bore the brunt, shedding $78 million in property, together with ETH and ERC20 tokens.
The first methodology employed by cybercriminals concerned duping victims into signing malicious phishing signatures, reminiscent of “Uniswap Permit2” and “increaseAllowance,” which enabled the malicious gamers to realize unauthorized entry to their victims’ funds.
“A lot of the thefts of all ERC20 tokens have been resulting from property being stolen on account of signing phishing signatures reminiscent of Allow, IncreaseAllowance, and Uniswap Permit2,” Rip-off Sniffer defined.
Rip-off Sniffer revealed that almost all victims fell prey to misleading feedback on social media platforms, significantly X (previously Twitter). The attackers usually masquerade as reputable crypto organizations to lure unsuspecting people to phishing websites the place their digital property are stolen.
The publish Over $2 million in Ethereum stolen in subtle phishing scheme appeared first on CryptoSlate.
