Fun

Address poisoning attacker sends $153K ETH to victim and agrees to negotiate

News Feed - 2024-05-10 03:05:00

Christopher Roark5 hours agoAddress poisoning attacker sends $153K ETH to victim and agrees to negotiateThe attacker who pulled off a $68 million address poisoning scam has posted two messages agreeing to negotiate with the victim.947 Total views2 Total sharesListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksThe address-poisoning attacker who allegedly tricked a user into sending them $68 million worth of Wrapped Bitcoin (WBTC) has sent $153,000 worth of Ether (ETH) back to the victim in an apparent show of good faith. In the same transaction, the attacker sent a message agreeing to negotiate and asking the victim for a Telegram username where they can be contacted. The amount sent back represents just 0.225% of the total funds allegedly stolen.


Blockchain data shows that on May 5, the attack victim, whose account ends in 8fD5, sent three messages to an account ending in dA6D. The recipient of the message had received funds from the attacking account, labeled “FakePhishing327990” on Etherscan, through several intermediate accounts. This implies that dA6D was likely to have been controlled by the attacker.


The messages implied that the victim was willing to give the attacker 10% of the funds as a bounty and refrain from prosecuting if they returned the other 90%. The victim stated:“We both know there"s no way to clean this funds. You will be traced. We also both understand the ‘sleep well’ phrase wasn"t about your moral and ethical qualities. Nevertheless, we officially admin your right to the 10%. Send 90% back. There are 24 hours for you before 10am UTC, 6th May 2024 to make a decision that will change your life, in any case.”


At 11:37 am UTC on May 9, another account ending in 72F1 responded by sending 51 Ether (ETH) (worth $153,000 at today’s price) to the victim. 72F1 had also received funds from FakePhishing327990 through several intermediate accounts, indicating it was also under the attacker"s control.


In the transaction that sent the 51 ETH, the attacker also posted a message stating “PleaseleaveyourtelegramandIwillcontactyou.” They then attempted to correct their bad punctuation at 11:43 am, posting an additional message that stated: “Please leave your telegram and I will contact you[.]”


In response, the victim posted a Telegram username where they can be contacted.Address poisoning victim negotiates with attacker. Source: Etherscan.


The negotiation occurred after the attacker allegedly tricked the victim into sending 1,155 Wrapped Bitcoin (WBTC) (worth $68 million at the time) into their account by mistake, which they did through an “address poisoning” transaction.


Blockchain data shows that at 09:17 am on May 3, the attacker used a smart contract to transfer 0.05 of a token from the victim’s account to the attacker"s account. The token transferred had no name listed on Etherscan and was simply referred to as “ERC-20.” Under normal circumstances, an attacker cannot transfer a token from another user without their consent. But in this case, the token had a custom design that allowed it to be transferred from an account without the user’s consent.


At 10:31 am on the same day, the victim sent 1,155 WBTC to this address, apparently by mistake. The address may have appeared similar to an address used by the victim to deposit funds into a centralized exchange or for some other reason.


In addition, the victim may have seen that they sent 0.05 of a token to this address in the past and therefore assumed it was safe. However, the 0.05 tokens were sent by the attacker and only appeared to have come from the victim.


When an attacker attempts to confuse victims by spamming them with transactions that appear to be coming from them but are actually coming from the attacker, security experts call it an “address poisoning attack.” Experts recommend that users carefully inspect the sending address in a transaction before confirming it, so as to avoid costly errors from these kinds of attacks.


Related:How to avoid zero-value transfer address poisoning attacks# Bitcoin# Ethereum# Bitcoin Scams# Cybersecurity# ScamsAdd reaction

News Feed
3 reasons why Bitcoin price is up today
Nancy Lubale4 hours ago3 reasons why Bitcoin price is up todayBitcoin price is back in the bulls’ control, but should traders anticipate a new all-time high?8672 Total views2 Total sharesListen to article 0:00Market An
2024-03-26 04:40 AM
Kyle White4 hours agoHere’s what happened in crypto todayNeed to know what happened in crypto today? Here is the latest news on daily trends and events impacting Bitcoin price, blockchain, DeFi, NFTs, Web3 and crypto r
2023-07-01 04:55 AM
Spot Solana ETF might 9x the price of SOL — GSR Markets
Brayden Lindrea4 hours agoSpot Solana ETF might 9x the price of SOL — GSR MarketsThe crypto market maker’s forecast for Solana was based on a “blue sky” scenario, while its “bear” scenario only predicted a 1.
2024-06-28 13:37 PM
BNB Chain to support early projects with new incubation alliance
Ezra Reguerra11 hours agoBNB Chain to support early projects with new incubation allianceThe announcement comes amid a recent surge in BNB’s price, reaching a new all-time high of $717.48 on June 6.1865 Total views2 To
2024-06-13 22:00 PM
Bitcoin advocate Mow lists six proposals for Trump's Nashville speech
Amaka Nwaokocha11 hours agoBitcoin advocate Mow lists six proposals for Trump"s Nashville speechThe Bitcoin advocate aims to influence the political leader to consider Bitcoin a viable and strategic component of the nati
2024-07-27 21:21 PM
Brayden Lindrea4 hours agoVitalik Buterin: AI may surpass humans as the ‘apex species’“Even Mars may not be safe” if superintelligent AI turns against humanity, warns Ethereum co-founder Vitalik Buterin.3171 Tota
2023-11-28 13:24 PM
NFT Sales This Week Jumped 27% Higher, Cryptopunks Rise Above Bored Apes
NFT Sales This Week Jumped 27% Higher, Cryptopunks Rise Above Bored Apes On Dec. 14, 2022, statistics show that non-fungible token (NFT) sales jumped 27.72% higher than NFT sales r
2022-12-15 04:00 AM
South African Court Releases Former Monero Developer Riccardo Spagni From Custody
South African Court Releases Former Monero Developer Riccardo Spagni From Custody A South African regional court recently ruled to release former Monero lead maintainer, Riccardo S
2022-07-18 16:30 PM
Solana Co-Founder Believes Bitcoin Needs to Change to Proof-of-Stake Consensus to Remain Relevant
Solana Co-Founder Believes Bitcoin Needs to Change to Proof-of-Stake Consensus to Remain Relevant Anatoly Yakovenko, one of the co-founders of Solana, the proof-of-stake based, sma
2022-05-01 17:30 PM
Desperate LUNA Investor Arrested, New Terra Network Announced, Davos Blockchain Talk, and More — Bitcoin.com News Week in Review
Desperate LUNA Investor Arrested, New Terra Network Announced, Davos Blockchain Talk, and More — Bitcoin.com News Week in Review From a desperate investor’s ill-advised vi
2022-05-29 20:00 PM
Arijit Sarkar12 hours agoKyberSwap hacker offers $4.6M bounty for return of $46M loot“On the table is a bounty equivalent to 10% of users’ funds taken from them by your hack,” said KyberSwap to its hacker in an on-
2023-11-24 20:29 PM
Dogecoin Charts Flash 2020-Style Bull Signal, Crypto Analyst Says
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
2025-04-19 01:30 AM