|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
區塊鏈安全平台 Scam Sniffer 最近透露,一名加密貨幣交易員在幾分鐘內損失了 3,500 萬美元。據說這名商人損失了這筆錢
A crypto trader has lost a staggering sum of $35 million in just minutes, falling victim to a social-engineered crypto scam. This incident serves as a stark reminder of the prevalence and sophistication of such scams within the crypto domain.
一名加密貨幣交易員在短短幾分鐘內損失了驚人的 3500 萬美元,成為社會工程加密貨幣騙局的受害者。這事件清楚地提醒人們,加密領域內此類騙局的普遍性和複雜性。
According to a recent X post by blockchain security platform Scam Sniffer, the crypto trader lost a total of 15,079 fwDETH ($35 million) after signing a “permit” phishing signature. These funds were then promptly sold off by the scammers, causing the price of dETH to experience a rapid decline.
根據區塊鏈安全平台 Scam Sniffer 最近發布的 X 帖子,該加密貨幣交易員在簽署「許可」網路釣魚簽名後總共損失了 15,079 個 fwDETH(3500 萬美元)。這些資金隨後被騙子迅速拋售,導致 dETH 的價格迅速下跌。
This scam is also said to have led to attacks on protocols like PAC Finance and Orbit Finance. The ‘Permit’ feature was introduced on the Ethereum network via the Ethereum Improvement Proposal (EIP) 2612 to help address the inconvenience of having to pay gas fees multiple times.
據說這個騙局也導致了對 PAC Finance 和 Orbit Finance 等協議的攻擊。透過以太坊改進提案 (EIP) 2612 在以太坊網路上引入了「許可」功能,以幫助解決必須多次支付 Gas 費的不便。
This permit function enables traders to sign an approval message off-chain, essentially allowing them to carry out gasless transactions. However, as evident in this incident where a crypto trader lost $35 million, one downside to these Permit signatures is that they are more vulnerable to social-engineered scams, unlike when conducting onchain approvals.
這種許可功能使交易者能夠在鏈外簽署批准訊息,本質上允許他們進行無gas交易。然而,從這起加密交易員損失 3500 萬美元的事件中可以明顯看出,這些許可證簽名的一個缺點是,與進行鏈上審批時不同,它們更容易受到社會工程詐騙的影響。
Scammers can easily trick users into granting approvals by making it seem like they are simply signing into a website when in reality, they are granting approval for their funds to be moved out of their wallets. Additionally, unlike warning signs that are displayed when signing an onchain approval, there are none for Permit signatures.
詐騙者可以輕易地欺騙用戶授予批准,讓他們看起來只是登入一個網站,而實際上,他們正在批准將資金從錢包中移出。此外,與簽署鏈上批准時顯示的警告標誌不同,許可證簽名沒有警告標誌。
Phishing Scams Remain The Common Form of Attack In Crypto
網路釣魚詐騙仍然是加密貨幣中常見的攻擊形式
Phishing scams continue to be one of the most prevalent social-engineered attacks in the crypto space, and Scam Sniffer drew the community’s attention to how the KOR Protocol’s X account was recently compromised and used to post phishing tweets. They noted that these phishing tweets from notable X accounts are often the result of social engineering attacks that authorize malicious apps.
網路釣魚詐騙仍然是加密貨幣領域最普遍的社會工程攻擊之一,Scam Sniffer 引起了社區對 KOR Protocol 的 X 帳戶最近如何遭到破壞並被用來發佈網絡釣魚推文的關注。他們指出,這些來自著名 X 帳戶的網路釣魚推文通常是授權惡意應用程式的社會工程攻擊的結果。
According to Scam Sniffer’s September Phishing Report, approximately 10,000 victims lost nearly $46 million to crypto phishing scams. At the same time, the third quarter of this year saw up to $127 million in phishing losses, with an average of 11,000 victims each month. Two victims are said to have accounted for $87 million of these losses.
根據 Scam Sniffer 的 9 月網路釣魚報告,大約 1 萬名受害者因加密網路釣魚詐騙損失了近 4,600 萬美元。同時,今年第三季網路釣魚損失高達 1.27 億美元,平均每月有 11,000 名受害者。據稱,其中 8,700 萬美元的損失由兩名受害者造成。
Interestingly, one of the victims lost $32 million by signing a permit signature, similar to this crypto trader, who lost $35 million. Another trader lost $1 million by copying the wrong address from a “contaminated transfer history.” Scam Sniffer revealed that most of the phishing attacks were procured by clicking on phishing links from fake accounts on the X platform and Google phishing ads.
有趣的是,其中一名受害者因簽署許可簽名而損失了 3,200 萬美元,與這位損失 3,500 萬美元的加密貨幣交易員類似。另一位交易員因從「受污染的轉帳歷史記錄」複製錯誤地址而損失了 100 萬美元。 Scam Sniffer透露,大多數網路釣魚攻擊是透過點擊X平台上的假帳號的網路釣魚連結和Google網路釣魚廣告來進行的。
The platform recently gave an example of a Google phishing ad. They highlighted a ‘Chainlist’ ad on the search engine. This ad leads traders to connect their wallets, and their wallets get drained after they sign the phishing signature.
該平台最近給了一個谷歌網路釣魚廣告的例子。他們在搜尋引擎上突出顯示了“Chainlist”廣告。該廣告引導交易者連接他們的錢包,而他們的錢包在簽署網路釣魚簽名後就會被耗盡。
免責聲明:info@kdj.com
所提供的資訊並非交易建議。 kDJ.com對任何基於本文提供的資訊進行的投資不承擔任何責任。加密貨幣波動性較大,建議您充分研究後謹慎投資!
如果您認為本網站使用的內容侵犯了您的版權,請立即聯絡我們(info@kdj.com),我們將及時刪除。
-
- 2024 年 10 月可立即購買的熱門遊戲加密貨幣
- 2024-10-13 18:25:01
- 遊戲和區塊鏈的整合催生了數位所有權、邊玩邊賺 (P2E) 模式和沈浸式體驗的新時代。
-
- 這 5 種新的加密貨幣可能正處於顯著增長的邊緣
- 2024-10-13 18:20:02
- 主要金融監管機構負責人懷疑數位貨幣能否充當真正的貨幣。然而,一些與現實世界資產相關的新加密貨幣正在獲得發展勢頭。
-
- 歐洲最佳加密貨幣交易所與交易平台
- 2024-10-13 18:20:02
- 在本指南中,我們將詳細介紹歐洲最好的加密貨幣交易所和交易平台,以便您可以使用所需的工具進行交易。
-
- 比特幣(BTC)未能突破關鍵阻力位,但波場(TRX)鯨魚引發看漲勢頭
- 2024-10-13 18:20:02
- 比特幣再次拒絕 6.4 萬美元的水平意味著市場其他部分的看跌情緒,但 TRON 的持續反彈預計將持續
-
- Crypto.com 安全嗎?交易所安全措施和風險指南
- 2024-10-13 18:20:02
- 在考慮交易加密貨幣時,許多人都在尋找可靠的平台。 Crypto.com 是最安全的加密貨幣交易所之一。