简体中文
繁體中文
English
Pусский
日本語
ภาษาไทย
Tiếng Việt
Bahasa Indonesia
Español
हिन्दी
Filippiiniläinen
Français
Deutsch
Português
Türkçe
한국어
العربية
Abstract:The bad actor targeted over 70,000 ETH wallets, spending over 8 ETH in gas fees. How the phishing attack was carried out, including the technical side and defensive measures.
Hackers are becoming more sophisticated and employ different tactics to deceive investors. A method that is becoming increasingly popular is a malicious airdrop.
Take Advantage of the Biggest Financial Event in London. This year we have expanded to new verticals in Online Trading, Fintech, Digital Assets, Blockchain, and Payments.
Initially, it was believed Uniswap's protocols were exploited. It was later determined that a phishing attack drained approximately $8 million out of Uniswap's liquidity providers.
Uniswap is a popular decentralized exchange (DEX) for Ethereum including tokens on the ETH mainnet.
In the first stage, the bad actor hits the explorers index so the 'From' address appears legitimate, 'Uniswap V3: Positions NFT'. This is called an event pollution attack.
Tokens are sent from the bad actor to numerous addresses. Investors that receive the tokens are curious why 'Uniswap' send them tokens. When checking the token's name the investors are led to the following website: uniswaplp.com (do not visit).
The LP that follows Uniswap in the url stands for liquidity provider.
Upon visiting the website, the following message is displayed:
Liquidity provider rewards At 14:00 UTC, July 11, 2022, Uniswap distributed the UniswapLP tokens, based on the provided liquidity, to the existing UNI-V3 liquidity providers.
“If you have received the UniswapLP tokens, then you are eligible to claim the UNI tokens from this page by clicking on the below button.”
As the investors already have received tokens from 'Uniswap' and that only 10k UNI will be airdropped, if claiming is not done immediately there is a risk of the investors missing a portion from the 10,000 UNI.
Employing fear of missing out (FOMO) plays a major role in luring investors into the trap. Upon clicking on the document, a call is made to ethall().
The user's browser info and wallet address are sent to /66312712367123.com.
It may then ask the user to send the tokens to their ETH address. Upon doing so, the bad actor gains full access to the victim's address and drains the account.
The above findings were reported by Harry Denley.
The bad actor sent the 'uniswap' tokens to over 70,000 addresses, spending a substantial amount (over 8 ethers) on gas fees. Among the targeted addresses were large ETH holders.
The vast majority of crypto investors are aware of these scams. However, many are caught off guard if they do not pay full attention to the information in from of them.
The bad actor already commenced laundering the stolen ethers via Tornado Cash, sending 100 ETH per transaction to the mixer.
There are several methods that can be adopted that may reduce the odds of becoming a phishing attack victim in the crypto space. Airdrops must be verified through the project's social media channels.
It may be Twitter, Telegram or Discord etc. If we take a scenario where the project's social media accounts are compromised, which has occurred in the past, paying attention to the permissions that are given upon interacting with the contract including the web address may help.
Another method, which is fairly new is using Forta, which offers real-time security. Forta's threat detection kit may be used for threat detections in NFTs, stablecoins, bridges and more.
ZenGo wallet has a feature called ClearSign that verifies interactions with contracts. As attacks are becoming more sophisticated, it is essential to take the required time to investigate the legitimacy of what you receive including in emails.
Disclaimer:
The views in this article only represent the author's personal views, and do not constitute investment advice on this platform. This platform does not guarantee the accuracy, completeness and timeliness of the information in the article, and will not be liable for any loss caused by the use of or reliance on the information in the article.
The Financial Markets Authority (FMA), New Zealand's financial regulator, warns individuals against investment scams that use YouTube channels to promote fraudulent cryptocurrency investment firms/websites. The authority explained on its official website how the YouTube cryptocurrency scam works, providing a step-by-step guide to help people recognize and avoid it. Read HOW THE SCAM WORKS and BE SAFE.
Every trader dreams of quick success, but rushing the process often leads to mistakes. It’s easy to get swept up in the excitement of winning trades or discouraged by unexpected losses. The truth is, mastering the emotional side of trading can be even more important than understanding market analysis or strategies.
In trading, distinguishing between a market correction and a market reversal is crucial for making sound decisions. Misjudging one for the other can lead to missed opportunities or significant losses. While both involve price movements, their causes, duration, and implications differ substantially. Understanding these differences can help traders improve their strategies and adapt to market conditions effectively.
With a steadfast commitment to fostering sustainable financial literacy and providing clear, strategic guidance to the next generation, WikiFX has collaborated with Van Lang University and Hoa Sen University to host an exclusive series of financial education workshops. This marks a pioneering initiative by WikiFX in Vietnam, designed not only to deliver foundational knowledge but also to instill a sense of responsibility and cultivate prudent financial decision-making among aspiring young traders.