Crypto victim loses $908K in sophisticated phishing attack
Published date:
Source:
BB Finews
8/9/25, 6:46 AM
A crypto user lost $908,551 to a wallet-draining scam 458 days after unknowingly signing a malicious approval transaction, onchain data shows.
The attack originated from an ERC-20 approval transaction — likely signed via a phishing site or fake airdrop — that gave the scammer’s wallet, “0x67E5Ae,” ongoing permission to access the victim’s funds.
The scammer — linked to the notorious pink-drainer.eth wallet address — executed the theft on Aug. 2 at 4:57am UTC, stealing $908,551 worth of the USDC (USDC) stablecoin, Scam Sniffer pointed out on X. The theft came 458 days after the victim signed the phishing approval transaction on April 30, 2024.
The security incident prompted Scam Sniffer to remind crypto users to “regularly review and revoke old approvals,” or else, hard-earned funds may be at risk.
“Your wallet security matters,” it added.
The scammer’s patience paid off
Until a month ago, the victim’s compromised wallet had seen minimal transaction activity and held little value — giving the attacker no incentive to act.
That changed on July 2, when the victim deposited $762,397 into the tainted wallet address, “0x6c0eB6,” from a MetaMask wallet at 8:41pm UTC.
Ten minutes later, another $146,154 in USDC was transferred into the same wallet from a Kraken wallet.
Related: $3.5B Bitcoin heist from 2020 retroactively uncovered — Arkham Intel
The scammer likely monitored the wallet over the next month, waiting to see if more funds would flow into it before deciding to drain the funds in a single transaction on Aug. 2.
This delayed strike is a defining trait of phishing approval attacks: scammers wait around for months, striking only when the victim’s wallet balance makes it worthwhile.
Tools already exist to prevent these attacks
To help prevent such attacks, Ethereum users can use Etherscan’s Token Approval Checker to review and revoke unnecessary token approvals — though each revocation requires a gas fee.
Bad actors and scammers stole over $142 million from the crypto space in July across at least 17 separate attacks, with the exploit of crypto exchange CoinDCX accounting for the most significant loss.
Magazine: Inside a 30,000 phone bot farm stealing crypto airdrops from real users
24 Hot News
Crypto victim loses $908K in sophisticated phishing attack
BB Finews
$3.5B Bitcoin heist from 2020 retroactively uncovered — Arkham Intel
BB Finews
Creative leverage solves the impermanent loss problem — Curve founder
BB Finews
Bitcoin mining difficulty hits ATH, but is projected to drop in August
BB Finews
Small setups, big wins: Is solo Bitcoin mining making a comeback?
BB Finews
ARK Invest scoops up Coinbase, BitMine shares amid stock dips
BB Finews
Spot Bitcoin ETFs see second-largest outflow, Ether ETFs end 20-day streak
BB Finews
Mill City Ventures to load up on more SUI with $500M deal as shares fall 11%
BB Finews
DeFi Education Fund urges Senate to strengthen crypto dev protections in draft bill
BB Finews
- Page 50
Disclaimer:
This article is an original work by BBFinews, with copyright owned by Jinse Finance. Unauthorized reproduction is prohibited. Authorized media must indicate: “Source: BBFinews” when using this content. Violators will be held legally accountable.
Risk Warning:
Investment involves risks. Please exercise caution when entering the market. This content does not constitute investment or financial advice.
定位失败
天气获取失败
--
