128 万美元在短短几个小时内消失：加密货币网络钓鱼攻击敲响警钟

在最近的一次网络钓鱼加密攻击中，受害者在短短两个小时内损失了 128 万美元，凸显了此类诈骗的威胁日益严重。此次攻击导致两名受害者损失了大量 $BEAM 和 $STONE 代币，这表明了加密市场中网络钓鱼攻击的严重性。

$1.28 Million Lost in Crypto Phishing Attack Within Hours: Cybersecurity Experts Sound Alarm

数小时内加密货币网络钓鱼攻击损失 128 万美元：网络安全专家拉响警报

Recent cybersecurity breaches have exposed the alarming rise of crypto phishing attacks, leading to significant financial losses for victims. One such incident has drawn particular attention, resulting in the theft of approximately $1.28 million in less than two hours.

最近的网络安全漏洞暴露了加密货币网络钓鱼攻击的惊人增长，导致受害者遭受重大经济损失。其中一起事件引起了特别关注，不到两小时就导致约 128 万美元被盗。

Phishing Scam Tactics

网络钓鱼诈骗策略

Phishing scams typically involve fraudulent attempts to obtain sensitive information, such as login credentials and private keys, by masquerading as legitimate entities. In this case, victims were targeted through phishing websites that impersonated official crypto services or social media accounts.

网络钓鱼诈骗通常涉及通过伪装成合法实体来获取敏感信息（例如登录凭据和私钥）的欺诈性尝试。在这种情况下，受害者通过冒充官方加密服务或社交媒体帐户的网络钓鱼网站成为目标。

Cybercriminals employed sophisticated techniques to bypass security measures and gain unauthorized access to victims' crypto wallets. These tactics included:

网络犯罪分子采用复杂的技术来绕过安全措施并未经授权访问受害者的加密钱包。这些策略包括：

• Wallet Drainers: Doctored or imitated wallet and approver tokens that enabled criminals to drain victims' digital assets.
• Twitter Impersonation: Using fake Twitter accounts to exploit users' trust in social media and lure them into falling prey to phishing schemes.

Investigation Findings

Wallet Drainers：经过篡改或模仿的钱包和批准者代币，使犯罪分子能够盗取受害者的数字资产。Twitter 冒充：使用虚假 Twitter 帐户利用用户对社交媒体的信任，引诱他们成为网络钓鱼计划的牺牲品。调查结果

An investigation revealed that one victim lost $787,242 worth of $BEAM tokens, while another lost $389,154 of $STONE tokens within a matter of hours. These incidents underscore the severe financial risks associated with phishing attacks in the crypto realm.

调查显示，一名受害者在几小时内丢失了价值 787,242 美元的 $BEAM 代币，而另一名受害者则在几小时内丢失了价值 389,154 美元的 $STONE 代币。这些事件凸显了与加密领域网络钓鱼攻击相关的严重财务风险。

Phishing Trends

网络钓鱼趋势

The ScamSniffer report for February revealed that 57 thousand victims lost nearly $47 million to phishing scams in one month alone. While the overall trend has shown a slight decline, the number of victims reporting losses exceeding $1 million has decreased by 75% compared to January.

ScamSniffer 2 月份的报告显示，仅一个月内就有 5.7 万名受害者因网络钓鱼诈骗损失了近 4700 万美元。虽然总体趋势略有下降，但报告损失超过 100 万美元的受害者数量比 1 月份减少了 75%。

Ethereum's mainnet has become the primary target for phishing attacks, accounting for over 78% of the total theft volume. Specifically, 86% of stolen funds (ERC20 tokens) were Ethereum tokens. Common phishing signatures exploited by hackers included "allow," "seed," "bounty," and "Uniswap Permit2."

以太坊主网已成为网络钓鱼攻击的主要目标，占总盗窃量的 78% 以上。具体来说，86% 的被盗资金（ERC20 代币）是以太坊代币。黑客利用的常见网络钓鱼签名包括“允许”、“种子”、“赏金”和“Uniswap Permit2”。

Protective Measures

保护措施

In light of the increasing frequency and sophistication of phishing attacks, cybersecurity experts urge users to remain vigilant and adopt comprehensive security measures to safeguard their digital assets. These measures include:

鉴于网络钓鱼攻击的频率和复杂性不断增加，网络安全专家敦促用户保持警惕，采取全面的安全措施来保护自己的数字资产。这些措施包括：

• Heightened Awareness: Users should be wary of suspicious links, emails, and websites, particularly those that request sensitive information.
• Multi-Factor Authentication (MFA): Utilizing multiple layers of authentication can enhance account security.
• Hardware Wallets: Storing cryptocurrencies in hardware wallets provides an additional layer of protection against phishing scams.
• Regular Software Updates: Keeping software and security patches up-to-date helps prevent hackers from exploiting vulnerabilities.

Conclusion

提高意识：用户应警惕可疑链接、电子邮件和网站，特别是那些请求敏感信息的链接、电子邮件和网站。多重身份验证 (MFA)：利用多层身份验证可以增强帐户安全性。硬件钱包：在硬件钱包中存储加密货币可以提供安全保护。针对网络钓鱼诈骗的额外保护层。定期软件更新：保持软件和安全补丁处于最新状态有助于防止黑客利用漏洞。结论

The recent $1.28 million crypto phishing attack serves as a stark reminder of the growing threat posed by cybercriminals. Users must remain alert and implement robust security practices to mitigate the risks associated with these malicious schemes. Cybersecurity experts continue to monitor and combat phishing attacks, but the onus is ultimately on individuals to protect their digital assets from unauthorized access.

最近发生的价值 128 万美元的加密网络钓鱼攻击清楚地提醒人们，网络犯罪分子构成的威胁日益严重。用户必须保持警惕并实施强大的安全实践，以减轻与这些恶意计划相关的风险。网络安全专家继续监控和打击网络钓鱼攻击，但保护其数字资产免遭未经授权的访问的最终责任在于个人。