网络钓鱼诈骗困扰加密生态系统，获利数百万美元

Phishing Attacks: A Recurring Nightmare in the Crypto Ecosystem

网络钓鱼攻击：加密生态系统中反复出现的噩梦

Is Phishing Back with a Vengeance?

网络钓鱼是否卷土重来？

Phishing scams have returned with a vengeance, leaving a trail of destruction in the digital asset ecosystem. Despite the recent market recovery, these attacks have become increasingly sophisticated, ensnaring high-profile crypto investors and industry leaders, resulting in colossal financial losses.

网络钓鱼诈骗卷土重来，给数字资产生态系统留下了毁灭性的痕迹。尽管最近市场有所复苏，但这些攻击变得越来越复杂，吸引了知名的加密货币投资者和行业领导者，造成了巨大的财务损失。

Whale Gets Hooked by Phishing Scam

鲸鱼被网络钓鱼骗局所迷惑

CertiK's March 21st update revealed a suspicious 3,700 ETH deposit into Tornado Cash on the Ethereum blockchain. The transfer, valued at over $10 million, raised alarms due to its connection to a major phishing incident in September 2023. The victim? A crypto whale who lost a staggering $24 million worth of staked ETH on Rocket Pool.

CertiK 3 月 21 日的更新显示，以太坊区块链上的 Tornado Cash 存有可疑的 3,700 ETH 存款。这笔价值超过 1000 万美元的转账由于与 2023 年 9 月的一起重大网络钓鱼事件有关而引起了警惕。受害者？一只加密鲸鱼在 Rocket Pool 上抵押的 ETH 损失了价值惊人的 2400 万美元。

How Did It Happen?

它是怎么发生的？

The attack was executed with surgical precision through two transactions. The fraudsters pilfered 9,579 stETH in one transaction and 4,851 rETH in another, amounting to $15.5 million and $8.5 million at the time of the breach. Scam Sniffer's investigation uncovered that the whale unwittingly authorized the "increaseAllowance" transaction, granting the fraudsters token approval.

这次攻击是通过两笔交易以外科手术般的精度执行的。欺诈者在一笔交易中窃取了 9,579 stETH，在另一笔交易中窃取了 4,851 rETH，在违规发生时，金额分别为 1550 万美元和 850 万美元。 Scam Sniffer 的调查发现，鲸鱼无意中授权了“increaseAllowance”交易，从而授予了欺诈者代币批准。

February's Phishing Tally: A Mixed Bag

二月份的网络钓鱼统计：好坏参半

February witnessed a slight respite in losses attributed to hacks, exploits, and scams. Phishing attacks accounted for $14.6 million out of the total $160 million lost during the month. The good news? $6.4 million was recovered.

二月份，黑客、漏洞利用和诈骗造成的损失略有缓解。本月 1.6 亿美元的总损失中，网络钓鱼攻击造成的损失达 1,460 万美元。好消息？追回 640 万美元。

Twitter Phishing: A Cunning Trap

Twitter 网络钓鱼：狡猾的陷阱

Scam Sniffer's February Phishing Report revealed that many victims were ensnared by phishing scams originating from X (formerly Twitter). Fraudulent X accounts posted enticing comments that lured unsuspecting victims to malicious websites, where they became targets of phishing schemes.

Scam Sniffer 的二月份网络钓鱼报告显示，许多受害者陷入了源自 X（以前称为 Twitter）的网络钓鱼诈骗。欺诈性 X 帐户发布诱人的评论，引诱毫无戒心的受害者访问恶意网站，从而成为网络钓鱼计划的目标。

Anonymous Victim Loses Millions

匿名受害者损失数百万美元

Earlier this year, an anonymous individual lost $4.2 million in a phishing attack that exploited a falsified ERC-20 permission signature. The victim's trust was misplaced, leading to a devastating financial blow.

今年早些时候，一名匿名人士在利用伪造的 ERC-20 权限签名的网络钓鱼攻击中损失了 420 万美元。受害者的信任被放错了地方，导致了毁灭性的经济打击。

The Takeaway: Stay Vigilant

要点：保持警惕

The rise in phishing attacks serves as a stark reminder to stay vigilant in the digital asset ecosystem. Granting token approvals and clicking on suspicious links can have catastrophic consequences. By understanding the tactics employed by fraudsters and exercising caution, you can protect yourself from falling victim to these insidious scams.

网络钓鱼攻击的增加强烈提醒我们在数字资产生态系统中保持警惕。授予令牌批准并点击可疑链接可能会带来灾难性的后果。通过了解欺诈者采用的策略并保持谨慎，您可以保护自己免受这些阴险骗局的伤害。