ExchangeDEX+
Buy CryptoMarketsSpotFutures500XEarnEvents
More
Gold Bar & BTC Giveaway2000g
The post Crypto whale loses $6M to sneaky phishing scheme targeting staked Ethereum appeared on BitcoinEthereumNews.com. A crypto whale lost more than $6 million in staked Ethereum (stETH) and Aave-wrapped Bitcoin (aEthWBTC) after approving malicious signatures in a phishing scheme on Sept. 18, according to blockchain security firm Scam Sniffer. According to the firm, the attackers disguised their move as a routine wallet confirmation through “Permit” signatures, which tricked the victim into authorizing fund transfers without triggering obvious red flags. Yu Xian, founder of blockchain security company SlowMist, noted that the victim did not recognize the danger because the transaction required no gas fees. He wrote: “From the victim’s perspective, he just clicked a few times to confirm the wallet’s pop-up signature requests, didn’t spend a single penny of gas, and $6.28 million was gone.” How Permit exploits work Permit approvals were originally designed to simplify token transfers. Instead of submitting an on-chain approval and paying fees, a user can sign an off-chain message authorizing a spender. That efficiency, however, has created a new attack surface for malicious players. Once a user signs such a permit, attackers can combine two functions—Permit and TransferFrom—to drain assets directly. Because the authorization takes place off-chain, wallet dashboards show no unusual activity until the funds move. As a result, the assets are gone when the approval executes on-chain, and tokens are redirected to the attacker’s wallet. This loophole has made permit exploits increasingly attractive for malicious actors, who can siphon millions without needing complex hacks or high-cost gas wars. Phishing losses The latest theft highlights a wider trend of escalating phishing campaigns. Scam Sniffer reported that in August alone, attackers stole $12.17 million from more than 15,200 victims. That figure represented a 72% jump in losses compared with July. According to the firm, the most significant share of August’s damages came from three large accounts that accounted for nearly half… The post Crypto whale loses $6M to sneaky phishing scheme targeting staked Ethereum appeared on BitcoinEthereumNews.com. A crypto whale lost more than $6 million in staked Ethereum (stETH) and Aave-wrapped Bitcoin (aEthWBTC) after approving malicious signatures in a phishing scheme on Sept. 18, according to blockchain security firm Scam Sniffer. According to the firm, the attackers disguised their move as a routine wallet confirmation through “Permit” signatures, which tricked the victim into authorizing fund transfers without triggering obvious red flags. Yu Xian, founder of blockchain security company SlowMist, noted that the victim did not recognize the danger because the transaction required no gas fees. He wrote: “From the victim’s perspective, he just clicked a few times to confirm the wallet’s pop-up signature requests, didn’t spend a single penny of gas, and $6.28 million was gone.” How Permit exploits work Permit approvals were originally designed to simplify token transfers. Instead of submitting an on-chain approval and paying fees, a user can sign an off-chain message authorizing a spender. That efficiency, however, has created a new attack surface for malicious players. Once a user signs such a permit, attackers can combine two functions—Permit and TransferFrom—to drain assets directly. Because the authorization takes place off-chain, wallet dashboards show no unusual activity until the funds move. As a result, the assets are gone when the approval executes on-chain, and tokens are redirected to the attacker’s wallet. This loophole has made permit exploits increasingly attractive for malicious actors, who can siphon millions without needing complex hacks or high-cost gas wars. Phishing losses The latest theft highlights a wider trend of escalating phishing campaigns. Scam Sniffer reported that in August alone, attackers stole $12.17 million from more than 15,200 victims. That figure represented a 72% jump in losses compared with July. According to the firm, the most significant share of August’s damages came from three large accounts that accounted for nearly half…

Crypto whale loses $6M to sneaky phishing scheme targeting staked Ethereum

By: BitcoinEthereumNews
2025/09/19 02:31
Threshold
T$0.01096-1.96%
Moonveil
MORE$0.004554-10.24%
Movement
MOVE$0.03893-4.16%
TokenFi
TOKEN$0.003588-6.70%
COM
COM$0.006711+21.62%

A crypto whale lost more than $6 million in staked Ethereum (stETH) and Aave-wrapped Bitcoin (aEthWBTC) after approving malicious signatures in a phishing scheme on Sept. 18, according to blockchain security firm Scam Sniffer.

According to the firm, the attackers disguised their move as a routine wallet confirmation through “Permit” signatures, which tricked the victim into authorizing fund transfers without triggering obvious red flags.

Yu Xian, founder of blockchain security company SlowMist, noted that the victim did not recognize the danger because the transaction required no gas fees. He wrote:

How Permit exploits work

Permit approvals were originally designed to simplify token transfers. Instead of submitting an on-chain approval and paying fees, a user can sign an off-chain message authorizing a spender.

That efficiency, however, has created a new attack surface for malicious players.

Once a user signs such a permit, attackers can combine two functions—Permit and TransferFrom—to drain assets directly. Because the authorization takes place off-chain, wallet dashboards show no unusual activity until the funds move.

As a result, the assets are gone when the approval executes on-chain, and tokens are redirected to the attacker’s wallet.

This loophole has made permit exploits increasingly attractive for malicious actors, who can siphon millions without needing complex hacks or high-cost gas wars.

Phishing losses

The latest theft highlights a wider trend of escalating phishing campaigns.

Scam Sniffer reported that in August alone, attackers stole $12.17 million from more than 15,200 victims. That figure represented a 72% jump in losses compared with July.

According to the firm, the most significant share of August’s damages came from three large accounts that accounted for nearly half of the total. This included one wallet that lost $3.08 million in a single exploit.

Meanwhile, the firm attributed the surge in losses to a rise in EIP-7702 batch-signature scams and direct transfers to malicious contracts.

Considering this, security experts have urged crypto users to be cautious when interacting with wallet requests and refuse demands that grant unlimited permissions to their wallets.

Mentioned in this article

Source: https://cryptoslate.com/crypto-whale-loses-6m-to-sneaky-phishing-scheme-targeting-staked-ethereum/

Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact service@support.mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.

You May Also Like

Solana News: SOL Faces Liquidity Crunch as $500M in Longs Sit on the Brink

Solana News: SOL Faces Liquidity Crunch as $500M in Longs Sit on the Brink

The post Solana News: SOL Faces Liquidity Crunch as $500M in Longs Sit on the Brink appeared on BitcoinEthereumNews.com. Key Insights On-chain insights suggest Solana liquidity has thinned to levels typically seen in a bear market. Institutional capital continues to pour into spot Solana ETFs, which have seen $17.72 million in net inflows this week, almost matching last week’s $20.30 million. Roughly $500 million in long positions could be exposed if the price slips just 5.5%. On-chain insights suggest Solana’s liquidity has thinned to levels typically seen in a bear market. According to a top analyst,  roughly $500 million in long positions could be exposed if the price slips just 5.5%. Meanwhile, Bitcoin’s mid-week buying burst lifted most major altcoins. Even so, Solana isn’t sharing in that confidence. Its liquidity continues to pull back, and the overall market remains uneasy, leaving the token on fragile footing despite the recent lift across the sector. Solana Realized Losses Outpace Profits as Liquidity Shrinks Solana’s 30-day average realized profit-to-loss ratio has remained below one since mid-November, according to a Wednesday tweet from on-chain analytics platform Glassnode. A ratio under one shows that realized losses are outpacing profits. This suggests liquidity has contracted to levels typically seen in a bear market. Solana realized profit/loss ratio data by Glassnode A tweet by Altcoin Vector pointed out that Solana is undergoing a full liquidity reset. This signal has marked the start of new liquidity cycles in the past and often leads to bottoming phases. If the current pattern mirrors April’s setup, a market reignition could take about four more weeks, potentially lining up with early January. The reset is being driven by several factors. Realized losses are prompting sell-offs, futures open interest is declining, market-makers are pulling back, and liquidity is fragmenting across trading pools. The mid- to long-term outlook for the market remains slightly bullish, particularly if macroeconomic pressures ease. In the near term,…
Solana
SOL$130.47-6.00%
LayerNet
NET$0.00000131--%
Belong
LONG$0.00268-6.22%
Share
BitcoinEthereumNews2025/12/11 14:11
Unleashing A New Era Of Seller Empowerment

Unleashing A New Era Of Seller Empowerment

The post Unleashing A New Era Of Seller Empowerment appeared on BitcoinEthereumNews.com. Amazon AI Agent: Unleashing A New Era Of Seller Empowerment Skip to content Home AI News Amazon AI Agent: Unleashing a New Era of Seller Empowerment Source: https://bitcoinworld.co.in/amazon-ai-seller-tools/
COM
COM$0.006694+21.35%
Sleepless AI
AI$0.04109-7.51%
ERA
ERA$0.2303-1.91%
Share
BitcoinEthereumNews2025/09/18 00:10
👨🏿‍🚀TechCabal Daily – Two for the Price of one

👨🏿‍🚀TechCabal Daily – Two for the Price of one

In today's edition: Mr Price to buy Germany's NKD || Safaricom raises $154 million through debt || LemFi acquires US licences || Kenya has a new crypto lobby group
Talus
US$----%
Share
Techcabal2025/12/11 14:40

Trending News

More

Solana News: SOL Faces Liquidity Crunch as $500M in Longs Sit on the Brink

Unleashing A New Era Of Seller Empowerment

👨🏿‍🚀TechCabal Daily – Two for the Price of one

‘Call of the times’: Environmentalists urge passage of anti-dynasty law

SwissBorg and Mastercard Team Up for Seamless Crypto-to-Fiat Payments

Quick Reads

More

Dogecoin (DOGE) Price Prediction: Market Forecast and Analysis

Dogecoin (DOGE) Short-Term Price Prediction

Zcash (ZEC) 7-day Price Change

Zcash (ZEC) Short-Term Price Prediction

Zcash (ZEC) Price Prediction: Market Forecast and Analysis

Crypto Prices

mc_price_img_alt

Ethereum

ETH

$3,184.14
$3,184.14$3,184.14

-4.33%

mc_price_img_alt

Bitcoin

BTC

$90,001.95
$90,001.95$90,001.95

-2.23%

mc_price_img_alt

Solana

SOL

$130.37
$130.37$130.37

-4.25%

mc_price_img_alt

XRP

XRP

$2.0018
$2.0018$2.0018

-2.90%

mc_price_img_alt

DOGE

DOGE

$0.13741
$0.13741$0.13741

-5.33%