A notorious phishing group known as the Inferno Draneur began to exploit new Ethereum functionality to launch holding attacks on portfolio portfolio
The group benefits from the Ethereum improvement proposal (EIP) 7702, a key element in the upgrade of Pectra, which allows the accounts (EOAS) to act temporarily as intelligent contract portfolios during transactions.
Sophisticated cryptocurrency sophisticated scam uses flexibility of Ethereum’s intelligent portfolio
On May 24, SCAM SNIFFER, a web3 anti-scam platform, reported a case where a portfolio recently upgraded to EIP-7702 lost nearly $ 150,000.
According to Yu Xian, founder of the Safety Society of the Slowmist Blockchain, Inferno Drainer produced the flight using a more sophisticated version of traditional phishing.
Unlike previous scams which directly divert user’s portfolios, Xian explained that Infant Draser used a delegated metamask portfolio – already authorized under EIP -7702.
He said that it allowed hackers to approve the transfer of tokens in silence thanks to an authorization process by lots.
Xian continued that the victim triggered a “execute” order without knowing it in Metamask, who processed the malicious lot data in the background. The result was a silent but effective token drain.
“The phishing gang uses this mechanism to complete the authorization operations on lots on the tokens linked to the victim’s address,” said Xian.
The security expert pointed out that this incident marks a change in the tactics of the scam.
According to him, this shows that the attackers no longer count only on the old tips because they actively integrate new updates Ethereum in their operations to stay in advance.
“As we predicted, phishing gangs have caught up … Everyone should be vigilant, make sure that the assets in your wallet are removed,” Xian said.
Given this, he urged users to regularly examine tokens authorizations and to check whether their portfolio addresses were delegated phishing accounts via EIP-7702.
Meanwhile, this case is part of a broader trend in the cryptography industry. Last month, malicious actors stole more than $ 5 million from $ 7,565 people through phishing attacks.
For this reason, security experts have stressed that crypto users must remain proactive to stay safe from these attack vectors.
SCAM SNIFFER advised industry players to check the websites before connecting or approving transactions. They also urge the members of the community to regularly audit their tokens permissions and to avoid clicking on unconcetic links.
Non-liability clause
In membership of the Trust project guidelines, Beincrypto has embarked on transparent impartial reports. This press article aims to provide precise and timely information. However, readers are invited to check the facts independently and consult a professional before making decisions according to this content. Please note that our terms and conditions, our privacy policy and our non-responsibility clauses have been updated.
