Exploiter Steals $68M Worth of Crypto Through Address Poisoning

{
  "by": "gulced",
  "descendants": 0,
  "id": 40248755,
  "score": 2,
  "time": 1714749898,
  "title": "Exploiter Steals $68M Worth of Crypto Through Address Poisoning",
  "type": "story",
  "url": "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/"
}

{
  "author": "Oliver Knight",
  "date": "2024-05-03T14:13:48.835Z",
  "description": "The victim was duped by a mimicked 0.05 ether transfer.",
  "image": "https://www.coindesk.com/resizer/ptL0eOtQ-Vm1vnbbmQrtdCP__bQ=/1200x628/center/middle/cloudfront-us-east-1.images.arcpublishing.com/coindesk/6MLC6M43OZFWTIWOZ54O6UT354.jpg",
  "logo": "https://logo.clearbit.com/coindesk.com",
  "publisher": "CoinDesk",
  "title": "Exploiter Steals $68M Worth of Crypto Through Address Poisoning",
  "url": "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/"
}

{
  "url": "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/",
  "title": "Exploiter Steals $68M Worth of Crypto Through Address Poisoning",
  "description": "A user unintentionally sent 1,155 wrapped bitcoin to an exploiter's wallet after being targeted by address poisoning.The scam has been confirmed by various blockchain security firms.01:25Bitcoin Posts New ATH...",
  "links": [
    "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/",
    "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/amp/"
  ],
  "image": "https://www.coindesk.com/resizer/Xpgx1HabchBcaGkMlNZnQzJ5jgA=/1200x600/center/top/cloudfront-us-east-1.images.arcpublishing.com/coindesk/6MLC6M43OZFWTIWOZ54O6UT354.jpg",
  "content": "<div><article><div><div><div><ul><li><p>A user unintentionally sent 1,155 wrapped bitcoin to an exploiter's wallet after being targeted by address poisoning.</p></li><li><p>The scam has been confirmed by various blockchain security firms.</p></li></ul></div><div><li><div><div><p><img src=\"https://cdn.jwplayer.com/v2/media/fT7tG6lC/poster.jpg?width=720\" alt=\"Bitcoin Posts New ATH Amid BlackRock's IBIT Options Launch\" /></p><p><span>01:25</span></p></div><div><p><span>Bitcoin Posts New ATH Amid BlackRock's IBIT Options Launch</span></p></div></div></li><li><div><div><p><img src=\"https://cdn.jwplayer.com/v2/media/2nFvdFyl/poster.jpg?width=720\" alt=\"Why the TON Ecosystem Could Be Crypto's Dark Horse in 2025\" /></p><p><span>18:04</span></p></div><div><p><span>Why the TON Ecosystem Could Be Crypto's Dark Horse in 2025</span></p></div></div></li><li><div><div><p><img src=\"https://cdn.jwplayer.com/v2/media/SBBBpJMp/poster.jpg?width=720\" alt=\"BlackRock's IBIT Options Launch on Nasdaq\" /></p><p><span>02:02</span></p></div><div><p><span>BlackRock's IBIT Options Launch on Nasdaq</span></p></div></div></li><li><div><div><p><img src=\"https://cdn.jwplayer.com/v2/media/qu8k0XK3/poster.jpg?width=720\" alt=\"Trump's Media Company in Talks to Buy Crypto Trading Platform Bakkt; Razzlekhan Gets 18 Months in Prison\" /></p><p><span>03:27</span></p></div><div><p><span>Trump's Media Company in Talks to Buy Crypto Trading Platform Bakkt; Razzlekhan Gets 18 Months in Prison</span></p></div></div></li></div><div><p>A cryptocurrency user has lost $68 million worth of wrapped bitcoin (WBTC) after falling victim to an address poisoning exploit, according to <a href=\"https://twitter.com/CertiKAlert/status/1786378165050306774\" target=\"_blank\">blockchain security firm CertiK</a>.</p></div></div><div><div><p>Address poisoning is a technique that involves tricking the victim into sending a legitimate transaction to the wrong wallet address by mimicking the first and last six characters of the true wallet address and depending on the sender to miss the discrepancy in the intervening characters. Wallet addresses can be as long as 42 characters.</p></div><div><p>In this case, the exploiter mimicked a 0.05 ether <a target=\"_blank\" href=\"https://coindesk.com/price/ethereum/\" title=\"Ethereum Price | ETH Price Index and Live Chart - CoinDesk\">(ETH)</a> transaction before receiving 1,155 WBTC from the victim.</p></div></div><div><div><p>Security platform <a href=\"https://twitter.com/CyversAlerts/status/1786363410243858869\" target=\"_blank\">Cyvers</a> and blockchain sleuth <a href=\"https://t.me/investigations/114\" target=\"_blank\">ZachXBT</a> confirmed that $68 million had been lost to an address poisoning scam.</p></div><div><p>Crypto investors <a href=\"https://www.coindesk.com/tech/2023/12/27/crypto-users-lost-2b-to-hacks-scams-and-exploits-in-2023-defi-says/\" target=\"_blank\">lost $2 billion to hacks</a>, scams and exploits across decentralized finance (DeFi) in 2023 and an additional <a href=\"https://www.coindesk.com/video/crypto-lost-dollar333m-to-hacks-in-q1-of-2024-immunefi/\" target=\"_blank\">$333 million was stolen</a> in the first quarter.</p></div><p>Edited by Sheldon Reback.</p></div></div><div><p>Disclosure</p><div><p>Please note that our <a target=\"_blank\" href=\"https://www.coindesk.com/privacy/\">privacy policy</a>, <a target=\"_blank\" href=\"https://www.coindesk.com/terms/\">terms of use</a>, <a target=\"_blank\" href=\"https://www.coindesk.com/privacy/#cookies\">cookies</a>, and <a target=\"_blank\" href=\"https://www.coindesk.com/privacy/#dnsmpi\">do not sell my personal information</a> have been updated.</p><p>CoinDesk is an <a target=\"_blank\" href=\"https://www.coindesk.com/business/2023/02/20/coindesk-wins-a-polk-award-a-top-journalism-prize-for-explosive-ftx-coverage/\">award-winning</a> media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of <a target=\"_blank\" href=\"https://www.coindesk.com/ethics/\">editorial policies</a>. CoinDesk has adopted a set of principles aimed at ensuring the integrity, editorial independence and freedom from bias of its publications. CoinDesk is part of the Bullish group, which owns and invests in digital asset businesses and digital assets. CoinDesk employees, including journalists, may receive Bullish group equity-based compensation. Bullish was incubated by technology investor Block.one.</p></div></div><div><div><a target=\"_blank\" href=\"https://www.coindesk.com/author/oliver-knight/\"><div><picture><source media=\"(min-width: 1024px)\" sizes=\"(min-width: 1024px) 192px, 100vw\" type=\"image/webp\" srcset=\"https://www.coindesk.com/resizer/NPkwseGxIFWlL3O-NBk3NfUNI_M=/192x192/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 192w, https://www.coindesk.com/resizer/jGtUET3yHXmZyJcu9HB07wOv8E0=/384x384/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 384w\"></source><source media=\"(min-width: 1024px)\" sizes=\"(min-width: 1024px) 192px, 100vw\" type=\"image/jpeg\" srcset=\"https://www.coindesk.com/resizer/NoRGEB_-QaYjZ-FY_ID988Dg2Ys=/192x192/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 192w, https://www.coindesk.com/resizer/bbDeAA38U2DClWQM8cAyQ6P22Eo=/384x384/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 384w\"></source><source media=\"(min-width: 600px) and (max-width: 1023px)\" sizes=\"(min-width: 600px) 72px\" type=\"image/webp\" srcset=\"https://www.coindesk.com/resizer/NTNcvOA6CZzzXSVtxHAmOd4Nc_Q=/72x72/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 72w, https://www.coindesk.com/resizer/eij76XbvPDu9Yd4KIBDVCtPMb9w=/144x144/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 144w, https://www.coindesk.com/resizer/eMSDUhY0T280-Ddh7oeTfdZ_IqE=/216x216/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 216w\"></source><source media=\"(min-width: 600px) and (max-width: 1023px)\" sizes=\"(min-width: 600px) 72px\" type=\"image/jpeg\" srcset=\"https://www.coindesk.com/resizer/NhGEQ5mIakqps-vs_BGrYp0ZFHo=/72x72/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 72w, https://www.coindesk.com/resizer/DSt7GYw6OucRMXHbgtN_CLZwQTk=/144x144/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 144w, https://www.coindesk.com/resizer/fJmQ_Rdt_PERC7P7Z97hLODtISA=/216x216/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 216w\"></source><source media=\"(max-width: 599px)\" sizes=\"(max-width: 599px) 72px\" type=\"image/webp\" srcset=\"https://www.coindesk.com/resizer/NTNcvOA6CZzzXSVtxHAmOd4Nc_Q=/72x72/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 72w, https://www.coindesk.com/resizer/eij76XbvPDu9Yd4KIBDVCtPMb9w=/144x144/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 144w, https://www.coindesk.com/resizer/eMSDUhY0T280-Ddh7oeTfdZ_IqE=/216x216/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 216w\"></source><source media=\"(max-width: 599px)\" sizes=\"(max-width: 599px) 72px\" type=\"image/jpeg\" srcset=\"https://www.coindesk.com/resizer/NhGEQ5mIakqps-vs_BGrYp0ZFHo=/72x72/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 72w, https://www.coindesk.com/resizer/DSt7GYw6OucRMXHbgtN_CLZwQTk=/144x144/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 144w, https://www.coindesk.com/resizer/fJmQ_Rdt_PERC7P7Z97hLODtISA=/216x216/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 216w\"></source><img src=\"https://www.coindesk.com/resizer/tFvoTAkbu6m0gRj_AU6HlfsSJSM=/72x72/filters:quality(80):format(jpg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg\" alt=\"Oliver Knight\" /></picture></div></a></div><div><p>Oliver Knight is a CoinDesk reporter based between London and Lisbon. He does not own any crypto.</p></div></div></article></div>",
  "author": "@coindesk",
  "favicon": "https://www.coindesk.com/pf/resources/images/192x192.png?d=371",
  "source": "coindesk.com",
  "published": "2024-05-03T14:13:48.835Z",
  "ttr": 64,
  "type": "article"
}