|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
区块链安全平台 Scam Sniffer 最近透露,一名加密货币交易员在几分钟内损失了 3500 万美元。据说这名商人损失了这笔钱
A crypto trader has lost a staggering sum of $35 million in just minutes, falling victim to a social-engineered crypto scam. This incident serves as a stark reminder of the prevalence and sophistication of such scams within the crypto domain.
一名加密货币交易员在短短几分钟内损失了惊人的 3500 万美元,成为社会工程加密货币骗局的受害者。这一事件清楚地提醒人们,加密领域内此类骗局的普遍性和复杂性。
According to a recent X post by blockchain security platform Scam Sniffer, the crypto trader lost a total of 15,079 fwDETH ($35 million) after signing a “permit” phishing signature. These funds were then promptly sold off by the scammers, causing the price of dETH to experience a rapid decline.
根据区块链安全平台 Scam Sniffer 最近发布的 X 帖子,该加密货币交易员在签署“许可”网络钓鱼签名后总共损失了 15,079 个 fwDETH(3500 万美元)。这些资金随后被诈骗者迅速抛售,导致 dETH 的价格迅速下跌。
This scam is also said to have led to attacks on protocols like PAC Finance and Orbit Finance. The ‘Permit’ feature was introduced on the Ethereum network via the Ethereum Improvement Proposal (EIP) 2612 to help address the inconvenience of having to pay gas fees multiple times.
据说这个骗局还导致了对 PAC Finance 和 Orbit Finance 等协议的攻击。通过以太坊改进提案 (EIP) 2612 在以太坊网络上引入了“许可”功能,以帮助解决必须多次支付 Gas 费的不便。
This permit function enables traders to sign an approval message off-chain, essentially allowing them to carry out gasless transactions. However, as evident in this incident where a crypto trader lost $35 million, one downside to these Permit signatures is that they are more vulnerable to social-engineered scams, unlike when conducting onchain approvals.
这种许可功能使交易者能够在链外签署批准消息,本质上允许他们进行无gas交易。然而,从这起加密交易员损失 3500 万美元的事件中可以明显看出,这些许可证签名的一个缺点是,与进行链上审批时不同,它们更容易受到社会工程诈骗的影响。
Scammers can easily trick users into granting approvals by making it seem like they are simply signing into a website when in reality, they are granting approval for their funds to be moved out of their wallets. Additionally, unlike warning signs that are displayed when signing an onchain approval, there are none for Permit signatures.
诈骗者可以很容易地欺骗用户授予批准,让他们看起来只是登录一个网站,而实际上,他们正在批准将资金从钱包中移出。此外,与签署链上批准时显示的警告标志不同,许可证签名没有警告标志。
Phishing Scams Remain The Common Form of Attack In Crypto
网络钓鱼诈骗仍然是加密货币中常见的攻击形式
Phishing scams continue to be one of the most prevalent social-engineered attacks in the crypto space, and Scam Sniffer drew the community’s attention to how the KOR Protocol’s X account was recently compromised and used to post phishing tweets. They noted that these phishing tweets from notable X accounts are often the result of social engineering attacks that authorize malicious apps.
网络钓鱼诈骗仍然是加密货币领域最普遍的社会工程攻击之一,Scam Sniffer 引起了社区对 KOR Protocol 的 X 帐户最近如何遭到破坏并被用来发布网络钓鱼推文的关注。他们指出,这些来自著名 X 帐户的网络钓鱼推文通常是授权恶意应用程序的社会工程攻击的结果。
According to Scam Sniffer’s September Phishing Report, approximately 10,000 victims lost nearly $46 million to crypto phishing scams. At the same time, the third quarter of this year saw up to $127 million in phishing losses, with an average of 11,000 victims each month. Two victims are said to have accounted for $87 million of these losses.
根据 Scam Sniffer 的 9 月份网络钓鱼报告,大约 10,000 名受害者因加密网络钓鱼诈骗损失了近 4600 万美元。与此同时,今年第三季度网络钓鱼损失高达 1.27 亿美元,平均每月有 11,000 名受害者。据称,其中 8,700 万美元的损失由两名受害者造成。
Interestingly, one of the victims lost $32 million by signing a permit signature, similar to this crypto trader, who lost $35 million. Another trader lost $1 million by copying the wrong address from a “contaminated transfer history.” Scam Sniffer revealed that most of the phishing attacks were procured by clicking on phishing links from fake accounts on the X platform and Google phishing ads.
有趣的是,其中一名受害者因签署许可签名而损失了 3200 万美元,与这位损失 3500 万美元的加密货币交易员类似。另一位交易员因从“受污染的转账历史记录”中复制错误地址而损失了 100 万美元。 Scam Sniffer透露,大多数网络钓鱼攻击是通过点击X平台上的虚假账户的网络钓鱼链接和谷歌网络钓鱼广告来进行的。
The platform recently gave an example of a Google phishing ad. They highlighted a ‘Chainlist’ ad on the search engine. This ad leads traders to connect their wallets, and their wallets get drained after they sign the phishing signature.
该平台最近给出了一个谷歌网络钓鱼广告的例子。他们在搜索引擎上突出显示了“Chainlist”广告。该广告引导交易者连接他们的钱包,而他们的钱包在签署网络钓鱼签名后就会被耗尽。
免责声明:info@kdj.com
所提供的信息并非交易建议。根据本文提供的信息进行的任何投资,kdj.com不承担任何责任。加密货币具有高波动性,强烈建议您深入研究后,谨慎投资!
如您认为本网站上使用的内容侵犯了您的版权,请立即联系我们(info@kdj.com),我们将及时删除。
-
- 2024 年 10 月可立即购买的热门游戏加密货币
- 2024-10-13 18:25:01
- 游戏和区块链的融合催生了数字所有权、边玩边赚 (P2E) 模式和沉浸式体验的新时代。
-
- 这 5 种新的加密货币可能正处于显着增长的边缘
- 2024-10-13 18:20:02
- 主要金融监管机构负责人怀疑数字货币能否充当真正的货币。然而,一些与现实世界资产相关的新加密货币正在获得发展势头。
-
- 欧洲最佳加密货币交易所和交易平台
- 2024-10-13 18:20:02
- 在本指南中,我们将详细介绍欧洲最好的加密货币交易所和交易平台,以便您可以使用所需的工具进行交易。
-
- 比特币(BTC)未能突破关键阻力位,但波场(TRX)鲸鱼引发看涨势头
- 2024-10-13 18:20:02
- 比特币再次拒绝 6.4 万美元的水平意味着市场其他部分的看跌情绪,但 TRON 的持续反弹预计将持续
-
- Crypto.com 安全吗?交易所安全措施和风险指南
- 2024-10-13 18:20:02
- 在考虑交易加密货币时,许多人都在寻找可靠的平台。 Crypto.com 是最安全的加密货币交易所之一。