🚨Crypto enthusiasts, buckle up! A new breed of crypto scam is in town, and it's targeting offline USDT transactions.🕵️‍♂️

SlowMist, in collaboration with imToken, has uncovered this fraud that operates by tampering with Ethereum node Remote Procedure Calls (RPC). Here's how it works:

The scammer persuades you to download the legit imToken wallet and gains your trust by transferring 1 USDT and a small amount of ETH. Then, they instruct you to redirect your ETH RPC URL to a node they control. Through this, they falsify your USDT balance, making it seem like funds have been deposited.💰

But when you try to transfer out the USDT, you find out you've been duped. The scammer has vanished, leaving you with a lighter wallet.👻

SlowMist also revealed that Tenderly’s Fork feature can modify balances and contract info, posing a bigger threat. So, understanding RPC is crucial to avoid such scams. Typically, wallets connect to secure nodes by default, but connecting to untrusted nodes can lead to malicious modifications, resulting in financial losses.😱

Further analysis by MistTrack shows the scam's depth. Investigation into a victim’s wallet address shows they received 1 USDT and 0.002 ETH from another address, which has transferred 1 USDT to multiple addresses, indicating repeated fraudulent activities. These addresses are flagged as “Pig Butchering Scammers” by MistTrack.🐷

Stay vigilant, crypto folks! Don't let the scammers win.💪🔒