The post New Ethereum feature exploited just weeks after launch in $146K phishing heist appeared on BitcoinEthereumNews.com.

An Ethereum wallet upgraded to the EIP-7702 smart accounts has lost $146,551 in various memecoins to phishing scammers. Blockchain security firm Scam Sniffer reported the incident, noting the funds were stolen through malicious batched transactions. According to the firm, the victim 0xc6d289d signed the malicious batched transactions, allowing the attackers to siphon the funds. The scammers used 0xC83De81A and 0x33dAD2b to execute the attack. Following the incident, Cybersecurity expert Yu Xian noted that the phishing exploit was very creative and identified the popular phishing group Inferno Drainer behind the incident. The group had publicly claimed that it had shut down, but a recent report by Check Point Research shows that its malware remains well in use and has been used to steal over $9 million in crypto assets in the last six months. Xian, the founder of blockchain security firm Slow Mist, noted that scammers did not switch the externally owned account (EOA) address to a phishing one. Instead, they used a mechanism in the Metamask EIP-7702 delegator to complete batch authorization phishing and stealing tokens. He said: “What I mean by a bit creative is that this time, the user’s EOA address was not switched to the 7702 contract address through phishing. In other words, the delegated address is not a phishing address, but the MetaMask that existed a few days ago: EIP-7702 Delegator Ox63c0c19a2.” This makes the incident even more complex than the previous attempts to exploit the EIP-7702 feature. Through the mechanism, the attackers could select tokens to steal from the victim’s address. Xian added that this shows how phishing gangs continue to find new and creative ways to steal users’ funds. Thus, crypto users must be careful so as not to lose their assets. As to how the attackers were able to compromise the user’s wallet,…

---

Filed under: News - @ May 25, 2025 4:21 pm