cryptoattack
5,056 views
9 Discussing
Hot
Latest
How Do Crypto Address Poisoning Attacks Work?
Blockchain address poisoning is a scam in the crypto world where attackers take advantage of the similarity between wallet addresses to trick users into sending money to the wrong wallets.Scammers create wallet addresses resembling those a user often interacts with and “pollute” their transaction history by sending small transactions from these fraudulent addresses.The irreversible nature of blockchain transactions increases the risk and impact of these address poisoning scams.Mitigation requires improvements at the protocol, wallet, and user education levels, along with blockchain analysis and real-time monitoring.
Introduction
With the rise of blockchain technology and cryptocurrencies, cybercriminals have also developed more clever ways to exploit users. One increasingly common and troubling tactic is called blockchain address poisoning. This scam tricks users into sending funds to wallet addresses that look very similar to ones they usually use. Unfortunately, because blockchain transactions are final and can’t be undone, users who make this mistake can suffer huge losses.
In this article, we explore how blockchain address poisoning attacks work, the techniques scammers use, real-world examples illustrating their impact, and strategies for prevention.
What Are Address Poisoning Attacks in Crypto?
This scam happens when fraudsters create wallet addresses that closely mimic the legitimate ones a user frequently transacts with. They then send small, seemingly harmless transactions from these “lookalike” addresses to the victim’s wallet. This action fills the victim’s recent transaction list or address book with “fake” addresses, increasing the chance they will accidentally pick a malicious address for their next transaction.
Blockchain wallet addresses are long strings of hexadecimal characters, which are hard to remember. Because of this, users often copy and paste addresses or select from recent addresses shown in their wallets, creating an opening for scammers to slip in malicious addresses that may appear familiar.
How do attackers generate similar addresses?
Scammers use computer programs to generate many wallet addresses repeatedly until they find ones that match the beginning and end characters of their target’s regular address. Wallet apps usually only display a few characters at the start and finish of addresses, so these similarities fool users into thinking the lookalike address is genuine.
Steps of a typical address poisoning attack
Study the victim: The scammer reviews the victim’s transaction patterns to learn which wallet addresses they frequently use.Generate fake addresses: Using automated tools, the attacker creates similar addresses that look like the ones used by the victims.Poison transaction history: They send tiny payments from these fake addresses to the victim’s wallet, embedding them in their address history.Catch the victim: Later, when the victim sends crypto and picks an address from their recent activity, they may pick the wrong one by accident, sending funds to the scammer.
Real-World Example: The 2024 Crypto Whale Attack
One high-profile case from May 2024 involved a crypto whale who mistakenly sent nearly $68 million in wrapped bitcoin (WBTC) to a scammer’s Ethereum address. The attacker spoofed the first six characters of the victim’s legitimate address to create a convincing fake. After receiving the funds, the scammer moved the assets through multiple crypto wallets.
Following negotiations, the scammer returned the original $68 million several days later but kept approximately $3 million profit due to price appreciation. The campaign behind this attack involved tens of thousands of fake addresses and targeted mostly experienced users with large wallet balances, highlighting the sophistication and scale these scams can reach.
Who Are the Victims?
The victims are usually active crypto users who hold larger amounts of cryptocurrency than typical users.Although most fake addresses don’t successfully deceive users, the overall amount stolen can reach hundreds of millions.Many victims reduce risk by performing small “test” transfers before sending large sums.
How to Prevent Address Poisoning Attacks
Improvements at the protocol level
Human-friendly addresses: Systems like Blockchain Domain Name System (BNS) and Ethereum Name Service (ENS) allow easier-to-remember names instead of long hexadecimal strings, which can help reduce errors.Higher costs for address creation: Introducing measures that slow down address creation or use larger character sets can potentially make generating fake addresses more difficult and costly.
Wallet and interface upgrades
Better address visibility: Wallets could show longer parts of addresses or alert users when sending to addresses similar to known fake ones.Blocking suspicious transfers: Wallets and blockchain explorers might hide or flag suspicious zero-value and counterfeit token transfers used in these scams.
User awareness and best practices
Test before sending: Always make small test transfers before sending large amounts.Keep trusted address lists: Use personal allowlists to avoid accidentally selecting fraudulent addresses.Use security tools: Consider using extensions or apps that detect phishing and address poisoning attempts.
Real-time blockchain monitoring
Real-time tools can spot unusual patterns linked to address poisoning and alert users, exchanges, or security teams to stop scams before they cause significant damage.
Closing Thoughts
Blockchain address poisoning is a growing and costly scam that takes advantage of complex wallet addresses and user convenience. Because crypto transactions cannot be undone, even small mistakes can mean serious losses.
Preventing these scams requires a team effort involving better blockchain protocols, smarter wallet designs, educated users, and advanced monitoring systems. By understanding how these attacks happen and following safety practices, the crypto community can reduce risk and stay more secure.
Further Reading
What Are Multisig Scams and How to Avoid Them? 5 Tips to Secure Your Cryptocurrency HoldingsWhat Is Wrapped Bitcoin (WBTC)?
Disclaimer: This content is presented to you on an “as is” basis for general information and educational purposes only, without representation or warranty of any kind. It should not be construed as financial, legal or other professional advice, nor is it intended to recommend the purchase of any specific product or service. You should seek your own advice from appropriate professional advisors. Products mentioned in this article may not be available in your region. Where the article is contributed by a third party contributor, please note that those views expressed belong to the third party contributor, and do not necessarily reflect those of Binance Academy. Please read our full disclaimer for further details. Digital asset prices can be volatile. The value of your investment may go down or up and you may not get back the amount invested. You are solely responsible for your investment decisions and Binance Academy is not liable for any losses you may incur. This material should not be construed as financial, legal or other professional advice. For more information, see our Terms of Use and Risk Warning.
$BTC
$ETH
#CryptoAttack
Introduction
With the rise of blockchain technology and cryptocurrencies, cybercriminals have also developed more clever ways to exploit users. One increasingly common and troubling tactic is called blockchain address poisoning. This scam tricks users into sending funds to wallet addresses that look very similar to ones they usually use. Unfortunately, because blockchain transactions are final and can’t be undone, users who make this mistake can suffer huge losses.
In this article, we explore how blockchain address poisoning attacks work, the techniques scammers use, real-world examples illustrating their impact, and strategies for prevention.
What Are Address Poisoning Attacks in Crypto?
This scam happens when fraudsters create wallet addresses that closely mimic the legitimate ones a user frequently transacts with. They then send small, seemingly harmless transactions from these “lookalike” addresses to the victim’s wallet. This action fills the victim’s recent transaction list or address book with “fake” addresses, increasing the chance they will accidentally pick a malicious address for their next transaction.
Blockchain wallet addresses are long strings of hexadecimal characters, which are hard to remember. Because of this, users often copy and paste addresses or select from recent addresses shown in their wallets, creating an opening for scammers to slip in malicious addresses that may appear familiar.
How do attackers generate similar addresses?
Scammers use computer programs to generate many wallet addresses repeatedly until they find ones that match the beginning and end characters of their target’s regular address. Wallet apps usually only display a few characters at the start and finish of addresses, so these similarities fool users into thinking the lookalike address is genuine.
Steps of a typical address poisoning attack
Study the victim: The scammer reviews the victim’s transaction patterns to learn which wallet addresses they frequently use.Generate fake addresses: Using automated tools, the attacker creates similar addresses that look like the ones used by the victims.Poison transaction history: They send tiny payments from these fake addresses to the victim’s wallet, embedding them in their address history.Catch the victim: Later, when the victim sends crypto and picks an address from their recent activity, they may pick the wrong one by accident, sending funds to the scammer.
Real-World Example: The 2024 Crypto Whale Attack
One high-profile case from May 2024 involved a crypto whale who mistakenly sent nearly $68 million in wrapped bitcoin (WBTC) to a scammer’s Ethereum address. The attacker spoofed the first six characters of the victim’s legitimate address to create a convincing fake. After receiving the funds, the scammer moved the assets through multiple crypto wallets.
Following negotiations, the scammer returned the original $68 million several days later but kept approximately $3 million profit due to price appreciation. The campaign behind this attack involved tens of thousands of fake addresses and targeted mostly experienced users with large wallet balances, highlighting the sophistication and scale these scams can reach.
Who Are the Victims?
The victims are usually active crypto users who hold larger amounts of cryptocurrency than typical users.Although most fake addresses don’t successfully deceive users, the overall amount stolen can reach hundreds of millions.Many victims reduce risk by performing small “test” transfers before sending large sums.
How to Prevent Address Poisoning Attacks
Improvements at the protocol level
Human-friendly addresses: Systems like Blockchain Domain Name System (BNS) and Ethereum Name Service (ENS) allow easier-to-remember names instead of long hexadecimal strings, which can help reduce errors.Higher costs for address creation: Introducing measures that slow down address creation or use larger character sets can potentially make generating fake addresses more difficult and costly.
Wallet and interface upgrades
Better address visibility: Wallets could show longer parts of addresses or alert users when sending to addresses similar to known fake ones.Blocking suspicious transfers: Wallets and blockchain explorers might hide or flag suspicious zero-value and counterfeit token transfers used in these scams.
User awareness and best practices
Test before sending: Always make small test transfers before sending large amounts.Keep trusted address lists: Use personal allowlists to avoid accidentally selecting fraudulent addresses.Use security tools: Consider using extensions or apps that detect phishing and address poisoning attempts.
Real-time blockchain monitoring
Real-time tools can spot unusual patterns linked to address poisoning and alert users, exchanges, or security teams to stop scams before they cause significant damage.
Closing Thoughts
Blockchain address poisoning is a growing and costly scam that takes advantage of complex wallet addresses and user convenience. Because crypto transactions cannot be undone, even small mistakes can mean serious losses.
Preventing these scams requires a team effort involving better blockchain protocols, smarter wallet designs, educated users, and advanced monitoring systems. By understanding how these attacks happen and following safety practices, the crypto community can reduce risk and stay more secure.
Further Reading
What Are Multisig Scams and How to Avoid Them? 5 Tips to Secure Your Cryptocurrency HoldingsWhat Is Wrapped Bitcoin (WBTC)?
Disclaimer: This content is presented to you on an “as is” basis for general information and educational purposes only, without representation or warranty of any kind. It should not be construed as financial, legal or other professional advice, nor is it intended to recommend the purchase of any specific product or service. You should seek your own advice from appropriate professional advisors. Products mentioned in this article may not be available in your region. Where the article is contributed by a third party contributor, please note that those views expressed belong to the third party contributor, and do not necessarily reflect those of Binance Academy. Please read our full disclaimer for further details. Digital asset prices can be volatile. The value of your investment may go down or up and you may not get back the amount invested. You are solely responsible for your investment decisions and Binance Academy is not liable for any losses you may incur. This material should not be construed as financial, legal or other professional advice. For more information, see our Terms of Use and Risk Warning.
$BTC
$ETH
#CryptoAttack
Security Concerns Arise: TELEBTC Deviation Sparks Suspicions of Attack on TeleportDAO
In a recent revelation by researcher Bobie from 0xScope, concerns have been raised regarding the potential security of the cross-chain Ordinals market TeleportDAO. Observations point to a possible attack on the protocol, with the Bitcoin-pegged token, TELEBTC, exhibiting a significant deviation in price from the actual value of Bitcoin.
Researcher Flags Anomaly:
Bobie, a researcher associated with 0xScope, has brought attention to an anomaly within the TeleportDAO ecosystem. The cross-chain Ordinals market, known for its integration of various blockchain networks, is under scrutiny as deviations in the price of TELEBTC, the protocol's Bitcoin-pegged token, have been identified.
TELEBTC Price Deviation:
The core of the concern lies in the observed disparity between the price of TELEBTC and the real value of Bitcoin. This deviation raises red flags and prompts suspicions that TeleportDAO may be vulnerable to an attack, potentially compromising the integrity of the protocol and its pegged token.
Security Implications:
The deviation in TELEBTC's price from the actual Bitcoin value not only poses risks for TeleportDAO users but also raises broader questions about the security measures in place within the protocol. Security is a paramount concern in decentralized finance (DeFi) platforms, and any compromise in this aspect can have far-reaching consequences for the ecosystem and its participants.
Impact on TeleportDAO Users:
Users of TeleportDAO, especially those involved with TELEBTC transactions, may face uncertainties and potential financial repercussions due to the observed anomaly. The protocol's response to this situation and its ability to address and rectify potential security vulnerabilities will be closely monitored by the DeFi community.
Response from TeleportDAO:
As news of the potential attack circulates, the response and actions taken by TeleportDAO will be critical in determining the protocol's resilience and commitment to safeguarding user assets. The transparency and effectiveness of their communication and remedial efforts will be pivotal in restoring confidence within the community.
Broader Implications for DeFi:
Incidents like these highlight the challenges and risks associated with decentralized financial platforms. The DeFi space continually grapples with the delicate balance between innovation and security, and events such as a potential attack on TeleportDAO serve as a reminder of the importance of robust security protocols in safeguarding users and assets.
The concerns raised by Bobie from 0xScope regarding the potential attack on TeleportDAO and the observed deviation in TELEBTC's price warrant immediate attention from the DeFi community. As the situation unfolds, the response from TeleportDAO will be closely monitored, and the incident may have broader implications for the ongoing discourse around security and trust within the decentralized finance landscape.
#TELEBTC #cryptoattack #TeleportDAO
Researcher Flags Anomaly:
Bobie, a researcher associated with 0xScope, has brought attention to an anomaly within the TeleportDAO ecosystem. The cross-chain Ordinals market, known for its integration of various blockchain networks, is under scrutiny as deviations in the price of TELEBTC, the protocol's Bitcoin-pegged token, have been identified.
TELEBTC Price Deviation:
The core of the concern lies in the observed disparity between the price of TELEBTC and the real value of Bitcoin. This deviation raises red flags and prompts suspicions that TeleportDAO may be vulnerable to an attack, potentially compromising the integrity of the protocol and its pegged token.
Security Implications:
The deviation in TELEBTC's price from the actual Bitcoin value not only poses risks for TeleportDAO users but also raises broader questions about the security measures in place within the protocol. Security is a paramount concern in decentralized finance (DeFi) platforms, and any compromise in this aspect can have far-reaching consequences for the ecosystem and its participants.
Impact on TeleportDAO Users:
Users of TeleportDAO, especially those involved with TELEBTC transactions, may face uncertainties and potential financial repercussions due to the observed anomaly. The protocol's response to this situation and its ability to address and rectify potential security vulnerabilities will be closely monitored by the DeFi community.
Response from TeleportDAO:
As news of the potential attack circulates, the response and actions taken by TeleportDAO will be critical in determining the protocol's resilience and commitment to safeguarding user assets. The transparency and effectiveness of their communication and remedial efforts will be pivotal in restoring confidence within the community.
Broader Implications for DeFi:
Incidents like these highlight the challenges and risks associated with decentralized financial platforms. The DeFi space continually grapples with the delicate balance between innovation and security, and events such as a potential attack on TeleportDAO serve as a reminder of the importance of robust security protocols in safeguarding users and assets.
The concerns raised by Bobie from 0xScope regarding the potential attack on TeleportDAO and the observed deviation in TELEBTC's price warrant immediate attention from the DeFi community. As the situation unfolds, the response from TeleportDAO will be closely monitored, and the incident may have broader implications for the ongoing discourse around security and trust within the decentralized finance landscape.
#TELEBTC #cryptoattack #TeleportDAO
Nobitex (June 2024) – $90M Theft
Iran’s Nobitex (the country’s largest exchange) was hit for about $90M. The hack likely mixed phishing with server exploits, then funneled funds through mixers. A geopolitical twist arose – state-sponsored fingers were pointed. This attack rattled Iran’s sanction-constrained crypto market. 🛡️🌐
#Nobitex #CryptoAttack #iran
$BTC
$ETH
$BNB
#Nobitex #CryptoAttack #iran
$BTC
$ETH
$BNB
🚨🚨 #CryptoAttack 💥🤯 𝗧𝗵𝗲 𝗛𝗶𝗱𝗱𝗲𝗻 𝗦𝘁𝗼𝗿𝘆 𝗕𝗲𝗵𝗶𝗻𝗱 𝘁𝗵𝗲 $BTC 📉 #DUMPED!!! 💲💲
🗞️ Rumours are spreading that the recent massive BTC crash was orchestrated by several major US banks and the 𝗝𝗣 𝗠𝗼𝗿𝗴𝗮𝗻 institution. 🏦 Their primary goal seems to have been to 𝗖𝗿𝗮𝘀𝗵 $BITCOIN .
🖋️ The institutions allegedly first bought BTC Spot, and then, even before the AI bubble narrative began, they started 𝘀𝗵𝗼𝗿𝘁𝗶𝗻𝗴 𝗠𝗶𝗰𝗿𝗼𝗦𝘁𝗿𝗮𝘁𝗲𝗴𝘆 (𝗠𝗦𝗧𝗥) 𝗦𝘁𝗼𝗰𝗸𝘀 with billions of dollars. 📉 Following this, they reportedly began circulating various 𝗻𝗲𝗴𝗮𝘁𝗶𝘃𝗲 𝗡𝗘𝗪𝗦 stories about BTC, pushing people to sell.
🤔 It is clear that Traditional Banks and financial institutions are fundamentally opposed to Bitcoin. This revelation has triggered a massive 𝗪𝗶𝘁𝗵𝗱𝗿𝗮𝘄𝗮𝗹 𝗪𝗮𝘃𝗲 🌊 among American Bitcoin supporters, urging everyone to pull their funds from 𝗝𝗣 𝗠𝗼𝗿𝗴𝗮𝗻 banks.
⚠️ If BTC were to move up to the $120K level, the 𝗠𝗶𝗰𝗿𝗼𝗦𝘁𝗿𝗮𝘁𝗲𝗴𝘆 𝗦𝘁𝗼𝗰𝗸 𝗰𝗼𝘂𝗹𝗱 𝗦𝘁𝗼𝗰𝗸 𝗰𝗼𝘂𝗹𝗱 𝘀𝘂𝗿𝗴𝗲 𝗯𝘆 𝗮𝗯𝗼𝘂𝘁 60%, which would also risk the 𝗟𝗶𝗾𝘂𝗶𝗱𝗮𝘁𝗶𝗼𝗻 💥 of JP Morgan's Short Position.💔
💥 This recent dump is being described as a 𝗣𝗹𝗮𝗻𝗻𝗲𝗱 𝗔𝘁𝘁𝗮𝗰𝗸 ⚠️ on the crypto market. This information is circulating widely across X (Twitter); be sure to look into it further.
📌 "What are your thoughts on this? 🤔 Share your comments below." 👇
#JPMorgan #MicroStrategy #FinancialNews
🗞️ Rumours are spreading that the recent massive BTC crash was orchestrated by several major US banks and the 𝗝𝗣 𝗠𝗼𝗿𝗴𝗮𝗻 institution. 🏦 Their primary goal seems to have been to 𝗖𝗿𝗮𝘀𝗵 $BITCOIN .
🖋️ The institutions allegedly first bought BTC Spot, and then, even before the AI bubble narrative began, they started 𝘀𝗵𝗼𝗿𝘁𝗶𝗻𝗴 𝗠𝗶𝗰𝗿𝗼𝗦𝘁𝗿𝗮𝘁𝗲𝗴𝘆 (𝗠𝗦𝗧𝗥) 𝗦𝘁𝗼𝗰𝗸𝘀 with billions of dollars. 📉 Following this, they reportedly began circulating various 𝗻𝗲𝗴𝗮𝘁𝗶𝘃𝗲 𝗡𝗘𝗪𝗦 stories about BTC, pushing people to sell.
🤔 It is clear that Traditional Banks and financial institutions are fundamentally opposed to Bitcoin. This revelation has triggered a massive 𝗪𝗶𝘁𝗵𝗱𝗿𝗮𝘄𝗮𝗹 𝗪𝗮𝘃𝗲 🌊 among American Bitcoin supporters, urging everyone to pull their funds from 𝗝𝗣 𝗠𝗼𝗿𝗴𝗮𝗻 banks.
⚠️ If BTC were to move up to the $120K level, the 𝗠𝗶𝗰𝗿𝗼𝗦𝘁𝗿𝗮𝘁𝗲𝗴𝘆 𝗦𝘁𝗼𝗰𝗸 𝗰𝗼𝘂𝗹𝗱 𝗦𝘁𝗼𝗰𝗸 𝗰𝗼𝘂𝗹𝗱 𝘀𝘂𝗿𝗴𝗲 𝗯𝘆 𝗮𝗯𝗼𝘂𝘁 60%, which would also risk the 𝗟𝗶𝗾𝘂𝗶𝗱𝗮𝘁𝗶𝗼𝗻 💥 of JP Morgan's Short Position.💔
💥 This recent dump is being described as a 𝗣𝗹𝗮𝗻𝗻𝗲𝗱 𝗔𝘁𝘁𝗮𝗰𝗸 ⚠️ on the crypto market. This information is circulating widely across X (Twitter); be sure to look into it further.
📌 "What are your thoughts on this? 🤔 Share your comments below." 👇
#JPMorgan #MicroStrategy #FinancialNews
SECURITY ALERT!
According to CryptoPotato, an individual recently fell victim to a crypto phishing attack, losing a staggering $4.2 million worth of aEthWETH and aEthUNI. 😱
Scam Sniffer, a Web3 security firm, revealed that the attacker used a deceptive ERC-20 permission signature to manipulate approvals for multiple transactions.
The victim unwittingly signed off on transactions, allowing the attacker to redirect funds to an unauthorized address before execution. 🕵️♂️
This sophisticated attack leveraged Opcode malware, a malicious software exploiting operation codes in scripting languages across platforms.
This type of malware can reroute funds, authorize unauthorized expenditures, and immobilize assets within smart contracts, all while evading traditional security measures.
Experts caution that Opcode malware can seize control over a victim’s CPU, memory, and system resources by exploiting weaknesses in the operating system or other software.
Phishing activities are on the rise, with scammers using advanced tactics to bypass security measures.
Even crypto whales, holding substantial market-influencing assets, have fallen victim to fraudsters, losing millions in the process.
Stay vigilant
#cryptoattack #Write2Earn #ETH
According to CryptoPotato, an individual recently fell victim to a crypto phishing attack, losing a staggering $4.2 million worth of aEthWETH and aEthUNI. 😱
Scam Sniffer, a Web3 security firm, revealed that the attacker used a deceptive ERC-20 permission signature to manipulate approvals for multiple transactions.
The victim unwittingly signed off on transactions, allowing the attacker to redirect funds to an unauthorized address before execution. 🕵️♂️
This sophisticated attack leveraged Opcode malware, a malicious software exploiting operation codes in scripting languages across platforms.
This type of malware can reroute funds, authorize unauthorized expenditures, and immobilize assets within smart contracts, all while evading traditional security measures.
Experts caution that Opcode malware can seize control over a victim’s CPU, memory, and system resources by exploiting weaknesses in the operating system or other software.
Phishing activities are on the rise, with scammers using advanced tactics to bypass security measures.
Even crypto whales, holding substantial market-influencing assets, have fallen victim to fraudsters, losing millions in the process.
Stay vigilant
#cryptoattack #Write2Earn #ETH
They have already bought… and you are still googling 'what is blockchain?' 🤷♂️📉📲
While you are thinking — PEPE is already up 12% 🚀
While you analyze — JUP is finding a new bottom to push up! 🪙
And ORDI is just silently going up without your participation 💥
---
What are those who are in profit buying now?
1. $PEPE
— because those who laugh, sell last with profit 😎
2. $JUP
— because 'the airdrop has passed — now the real movement will begin' 🛸
While you analyze — JUP is finding a new bottom to push up! 🪙
And ORDI is just silently going up without your participation 💥
---
What are those who are in profit buying now?
1. $PEPE
— because those who laugh, sell last with profit 😎
2. $JUP
— because 'the airdrop has passed — now the real movement will begin' 🛸
Login to explore more contents