On December 3, Scam Sniffer, a platform for detecting Web3 scams, revealed that approximately ten Safe Wallet users fell victim to ‘address poisoning attacks’, losing a total of $2.05 million since November 26.
Just last week, a hacker specializing in “address poisoning attacks” successfully stole over $2 million from users of Safe Wallet, bringing the total number of victims to 21.
According to data from Dune Analytics, compiled by Scam Sniffer, this same attacker has managed to steal at least $5 million from a total of 21 victims over the past four months. One of the victims reportedly had $10 million in cryptocurrency stored in a Safe Wallet, but fortunately only lost $400,000 of it.
In this scheme, the hacker sends a small amount of cryptocurrency from the fake address to the target, introducing confusion into their transaction history. The goal is to deceive the victim into copying the imposter’s address from their transaction records, leading them to unintentionally send funds to the hacker’s wallet instead of the intended recipient.