About 10 Safe Wallets lost $2.05 million due to poisoning assaults.
The same criminal has allegedly taken $5 million from 21 victims during the last 4 months.
The number of victims for a crypto hacker who specializes in “address poisoning attacks” has risen to 21. Moreover, in the last week alone, they have stolen almost $2 million from Safe Wallet customers. About 10 Safe Wallets lost $2.05 million due to poisoning assaults that occurred between November 26 and December 3, according to Scam Sniffer, a Web3 fraud detection platform.
Scam Sniffer’s analysis of Dune Analytics indicates that the same criminal has allegedly taken $5 million from 21 victims during the last four months. One victim reportedly had $10 million in cryptocurrency stored in a secure wallet, but “luckily” only lost $400,000.
Poisoning Victims Transaction Histories
Address poisoning occurs when a hacker uses the same starting and ending characters to generate an address that seems identical to the one a victim often uses to transfer money.
It is common practice for hackers to “poison” their victims’ transaction histories by sending them a little amount of cryptocurrency from a newly-created wallet. The victim can transfer money to the hacker’s wallet instead of the intended recipient if they mistakenly copy the look-alike address from their transaction history.
On November 30th, lending protocol Florence Finance lost $1.45 million in USDC due to a high-profile address poisoning assault that seems to have been carried out by the same cybercriminal.
With the poison and actual addresses starting with “0xB087” and ending with “5870,” the attacker may have been able to fool the protocol, according to blockchain security startup PeckShield, which reported the event at the time.