Imited Accounts on X (formerly Twitter) were blamed for most cryptocurrency phishing attacks last month, with victims lost almost $ 47 million.
Anti-Fraud Specialist Scam Sniffer claimed in his monthly Scam sniffer phishing report That cyber criminals stole almost $ 46.9 million of just over 57,000 victims.
Most of these people were lured to phishing sites by fake X accounts that were forged to look like legitimate high-profile accounts. These usually leave comments on the messages from victims to lure unsuspecting cryptocurrency holders.
Ethereum Mainnet accounted for 78% of the total volume of theft, which mainly focused on ERC20 tokens (86%), SCAM Sniffer said in a series of messages on social media.
Read more about Crypto-Drrainer Scams: Crypto Drainer steals $ 59 million via Google and X ads
“Most thefts of all ERC20 tokens were due to stealing assets as a result of signing phishing signatures such as permit, increase and uniswap permit2,” it continued.
These mechanisms enable users to communicate with smart contracts without prior authorization, by adding an authorization signature. However, they are increasingly hijacked by phishing actors.
Scam Sniffer warned That most wallet attacks that it has observed now use safe or “account abstraction” portfolios for token approvals. Account abstraction is intended to improve smart contract compatibility for Ethereum portfolios, but is again manipulated by bad actors in attacks.
Despite the large volume of stolen funds in February, the number of victims that lost more than $ 1 million fell by 75% compared to the previous month.
It is not only fake X accounts that Cryptocurrency holders nowadays have to be careful. The developers of a popular crypto wallet have warned users not to fall for a scam app in the Apple App Store that contains crypto-drowner malware.
The makers of the leather wallet took to X last week to encourage users not to fall for the scam and the wallet to download only from the official website.
“The leather wallet -app currently in the iOS store is fake. Don’t download it and certainly do not enter your seed sense. We promise that we will let you know as soon as our mobile app is actually ready,” ” They said.
PSA: The Leather Wallet -App that is currently in the iOS shop is fake 🚨
⚠️ Do not download it and certainly do not enter your seed sentence.
We promise that we will let you know as soon as our mobile app is really ready!
Leer may only be downloaded directly from https://t.co/V9ZPQR40UC.
– Leather – The Bitcoin wallet for the rest of us (@Leatherbtc) March 4, 2024