A cryptocurrency investor recently lost $6.28 million to a sophisticated phishing scam that exploited malicious signature approvals. The incident serves as a significant reminder of the increasing prevalence of “permit phishing” schemes, which pose a serious threat to users in the DeFi ecosystem. Attacker Steals $6.28 Million   The attack began when the victim received a targeted phishing message that appeared to be a legitimate update from a decentralized finance (DeFi) platform. Tempted by offers of better returns, the investor connected their wallet to a fake website. There, they signed an EIP-2612, which includes a feature that allows token approvals without gas fees. However, it can also unintentionally give scammers unlimited spending access to a smart contract.  The theft occurred shortly after the approvals were granted. The scammer quickly executed a contract that drained 3,200 stETH and a matching amount of aEthWBTC from the victim’s wallet. The loot, which was traced to a mixer address, revealed a calculated plan to conceal the trail.  The entire theft took less than 12 minutes, using automated scripts for speed. Scam Sniffer noted that the victim’s portfolio, which was worth over $10 million before the attack, lost half its value immediately. The rapid process allowed no time for intervention, as blockchain transactions cannot be reversed once completed. On-chain analysis indicated that the assets were unlikely to be recovered, as they were likely laundered through exchanges. Not New   Following the exploit, some users on X have expressed shock, wondering how the victim unwittingly signed malicious token approvals. However, this subtle trap has long troubled the crypto space. For instance, earlier this month, a user of Venus Protocol lost $13.5 million. The victim fell prey to a phishing scam by approving a transaction from a malicious Core Pool Comptroller contract, which granted the attacker access to their funds. Once permission was given, the hacker quickly drained stablecoins and wrapped tokens from the trader’s wallet.  Surprisingly, though, a few hours after the incident, the Venus team tracked the stolen funds by force-liquidating the hackers’ trade positions. The team fully recovered the stolen funds afterwards, leaving the thief with nothing. The post Crypto Investor Loses $6.28M to Sophisticated Phishing Permit Scam appeared first on Cointab.A cryptocurrency investor recently lost $6.28 million to a sophisticated phishing scam that exploited malicious signature approvals. The incident serves as a significant reminder of the increasing prevalence of “permit phishing” schemes, which pose a serious threat to users in the DeFi ecosystem. Attacker Steals $6.28 Million   The attack began when the victim received a targeted phishing message that appeared to be a legitimate update from a decentralized finance (DeFi) platform. Tempted by offers of better returns, the investor connected their wallet to a fake website. There, they signed an EIP-2612, which includes a feature that allows token approvals without gas fees. However, it can also unintentionally give scammers unlimited spending access to a smart contract.  The theft occurred shortly after the approvals were granted. The scammer quickly executed a contract that drained 3,200 stETH and a matching amount of aEthWBTC from the victim’s wallet. The loot, which was traced to a mixer address, revealed a calculated plan to conceal the trail.  The entire theft took less than 12 minutes, using automated scripts for speed. Scam Sniffer noted that the victim’s portfolio, which was worth over $10 million before the attack, lost half its value immediately. The rapid process allowed no time for intervention, as blockchain transactions cannot be reversed once completed. On-chain analysis indicated that the assets were unlikely to be recovered, as they were likely laundered through exchanges. Not New   Following the exploit, some users on X have expressed shock, wondering how the victim unwittingly signed malicious token approvals. However, this subtle trap has long troubled the crypto space. For instance, earlier this month, a user of Venus Protocol lost $13.5 million. The victim fell prey to a phishing scam by approving a transaction from a malicious Core Pool Comptroller contract, which granted the attacker access to their funds. Once permission was given, the hacker quickly drained stablecoins and wrapped tokens from the trader’s wallet.  Surprisingly, though, a few hours after the incident, the Venus team tracked the stolen funds by force-liquidating the hackers’ trade positions. The team fully recovered the stolen funds afterwards, leaving the thief with nothing. The post Crypto Investor Loses $6.28M to Sophisticated Phishing Permit Scam appeared first on Cointab.

Crypto Investor Loses $6.28M to Sophisticated Phishing Permit Scam

By: Coinstats
2025/09/19 01:35
DeFi
DEFI$0.00139-7.14%
TokenFi
TOKEN$0.00859+4.24%
Core DAO
CORE$0.256-0.65%
Smart Blockchain
SMART$0.003577-6.82%
MicroVisionChain
SPACE$0.1505-11.52%
Solana Retardz
SCAM$0.0000196--%

A cryptocurrency investor recently lost $6.28 million to a sophisticated phishing scam that exploited malicious signature approvals. The incident serves as a significant reminder of the increasing prevalence of “permit phishing” schemes, which pose a serious threat to users in the DeFi ecosystem.

Attacker Steals $6.28 Million  

The attack began when the victim received a targeted phishing message that appeared to be a legitimate update from a decentralized finance (DeFi) platform. Tempted by offers of better returns, the investor connected their wallet to a fake website.

There, they signed an EIP-2612, which includes a feature that allows token approvals without gas fees. However, it can also unintentionally give scammers unlimited spending access to a smart contract. 

The theft occurred shortly after the approvals were granted. The scammer quickly executed a contract that drained 3,200 stETH and a matching amount of aEthWBTC from the victim’s wallet. The loot, which was traced to a mixer address, revealed a calculated plan to conceal the trail. 

The entire theft took less than 12 minutes, using automated scripts for speed. Scam Sniffer noted that the victim’s portfolio, which was worth over $10 million before the attack, lost half its value immediately. The rapid process allowed no time for intervention, as blockchain transactions cannot be reversed once completed. On-chain analysis indicated that the assets were unlikely to be recovered, as they were likely laundered through exchanges.

Not New  

Following the exploit, some users on X have expressed shock, wondering how the victim unwittingly signed malicious token approvals. However, this subtle trap has long troubled the crypto space. For instance, earlier this month, a user of Venus Protocol lost $13.5 million.

The victim fell prey to a phishing scam by approving a transaction from a malicious Core Pool Comptroller contract, which granted the attacker access to their funds. Once permission was given, the hacker quickly drained stablecoins and wrapped tokens from the trader’s wallet. 

Surprisingly, though, a few hours after the incident, the Venus team tracked the stolen funds by force-liquidating the hackers’ trade positions. The team fully recovered the stolen funds afterwards, leaving the thief with nothing.

The post Crypto Investor Loses $6.28M to Sophisticated Phishing Permit Scam appeared first on Cointab.

Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact service@support.mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.
Share Insights

You May Also Like

Ukrainian Crypto Fund Co-Founder Allegedly Dies After Market Collapse

Ukrainian Crypto Fund Co-Founder Allegedly Dies After Market Collapse

According to posts circulating among crypto communities, Galish reportedly took his own life after suffering massive trading losses during last […] The post Ukrainian Crypto Fund Co-Founder Allegedly Dies After Market Collapse appeared first on Coindoo.
FUND
FUND$0.01377-30.10%
Life Crypto
LIFE$0.00003837+7.87%
Share
Coindoo2025/10/12 13:00
Share
BullZilla, Cardano, WLF – Next 1000x crypto

BullZilla, Cardano, WLF – Next 1000x crypto

The post BullZilla, Cardano, WLF – Next 1000x crypto appeared on BitcoinEthereumNews.com. Crypto News Discover why BullZilla, Cardano, and World Liberty Financial are the next 1000x crypto. Join the BullZilla presale before prices surge. Cardano and World Liberty Financial are making waves in the digital finance landscape as investors prepare for the next big leap in the crypto cycle. Mounting fiscal uncertainty and rapid innovation in decentralized ecosystems are pushing the market into new, exciting directions. With blockchain adoption increasing globally, the next 1000x crypto are already gaining traction. Recent reports indicate that institutional money is moving toward projects with strong fundamentals and transparent development roadmaps. Cardano, known for its academic precision and layered architecture, continues to position itself as a leader in scalable decentralized applications. Meanwhile, World Liberty Financial (WLF) is pioneering the fusion of DeFi and real-world financial systems, making it a standout among emerging blockchain ventures. Amid this evolving landscape, one project has captured the spotlight for its explosive presale performance, BullZilla (BZIL). With each stage changing every 48 hours or after hitting $100,000, early investors are rushing to join what’s being called one of the next 1000x crypto. BullZilla (BZIL): The Presale Phenomenon Taking Over 2025 If 2025 is about explosive crypto launches, BullZilla ($BZIL) sits right at the center of the storm. With its dynamic mutation mechanism, each stage of the BullZilla presale increases in price either every 48 hours or after raising $100,000, ensuring that early investors reap the maximum rewards. Currently, BullZilla is in Stage 6B, priced at $0.00014574, with over 2800 holders and $860k raised with growing momentum across social media. Unlike typical meme coins, BullZilla introduces real tokenomics through its Roar Burn mechanism, which permanently destroys tokens from the supply with every milestone reached. This deflationary model drives scarcity and ensures sustainable growth, aligning with its goal to become one of the next…
BRC20.COM
COM$0.010487+12.66%
WHY
WHY$0.0000000215-19.65%
Torch of Liberty
LIBERTY$0.02743-10.70%
Share
BitcoinEthereumNews2025/10/12 12:46
Share
Bitcoin Could Crash 80% From Current Levels – 3 Altcoins Set to Benefit

Bitcoin Could Crash 80% From Current Levels – 3 Altcoins Set to Benefit

As Bitcoin continues to trade in lockstep with major tech stocks like Nvidia, analysts are growing increasingly concerned that a sharp correction could be on the horizon. With both assets soaring to record levels this year, fears of an “AI-fueled double bubble” are spreading across the market – one that could see Bitcoin’s price drop
Polytrade
TRADE$0.08404+1.73%
Major
MAJOR$0.09128+11.93%
Wink
LIKE$0.006794-8.86%
Share
Coinstats2025/10/12 12:30
Share

Trending News

More

Ukrainian Crypto Fund Co-Founder Allegedly Dies After Market Collapse

BullZilla, Cardano, WLF – Next 1000x crypto

Bitcoin Could Crash 80% From Current Levels – 3 Altcoins Set to Benefit

AIA/USDT perpetual contract saw a 24-hour increase of 61.53%.

Avalanche – 27% crash, $222mln wiped – Here’s why bulls still eye $30!