Exploiter Steals $68M Worth of Crypto Through Address Poisoning

{
  "by": "gulced",
  "descendants": 0,
  "id": 40248755,
  "score": 2,
  "time": 1714749898,
  "title": "Exploiter Steals $68M Worth of Crypto Through Address Poisoning",
  "type": "story",
  "url": "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/"
}

{
  "author": "Oliver Knight",
  "date": "2024-05-03T14:13:48.835Z",
  "description": "The victim was duped by a mimicked 0.05 ether transfer.",
  "image": "https://www.coindesk.com/resizer/ptL0eOtQ-Vm1vnbbmQrtdCP__bQ=/1200x628/center/middle/cloudfront-us-east-1.images.arcpublishing.com/coindesk/6MLC6M43OZFWTIWOZ54O6UT354.jpg",
  "logo": "https://logo.clearbit.com/coindesk.com",
  "publisher": "CoinDesk",
  "title": "Exploiter Steals $68M Worth of Crypto Through Address Poisoning",
  "url": "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/"
}

{
  "url": "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/",
  "title": "Exploiter Steals $68M Worth of Crypto Through Address Poisoning",
  "description": "A user unintentionally sent 1,155 wrapped bitcoin to an exploiter's wallet after being targeted by address poisoning.The scam has been confirmed by various blockchain security firms.01:0580% of Tokens Suffer...",
  "links": [
    "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/",
    "https://www.coindesk.com/business/2024/05/03/exploiter-steals-68m-worth-of-crypto-through-address-poisoning/amp/"
  ],
  "image": "https://www.coindesk.com/resizer/Xpgx1HabchBcaGkMlNZnQzJ5jgA=/1200x600/center/top/cloudfront-us-east-1.images.arcpublishing.com/coindesk/6MLC6M43OZFWTIWOZ54O6UT354.jpg",
  "content": "<article><div><div><div><ul><li><p>A user unintentionally sent 1,155 wrapped bitcoin to an exploiter's wallet after being targeted by address poisoning.</p></li><li><p>The scam has been confirmed by various blockchain security firms.</p></li></ul></div><div><li><div><div><p><img src=\"https://cdn.jwplayer.com/v2/media/AH1BQNyV/poster.jpg?width=720\" alt=\"80% of Tokens Suffer Losses for at Least 6 Months After a Hack: Immunefi\" /></p><p><span>01:05</span></p></div><div><p><span>80% of Tokens Suffer Losses for at Least 6 Months After a Hack: Immunefi</span></p></div></div></li><li><div><div><p><img src=\"https://cdn.jwplayer.com/v2/media/ExwLd8hY/poster.jpg?width=720\" alt=\"Crypto Hacks Totaled $19B Since 2011: Crystal Intelligence\" /></p><p><span>00:57</span></p></div><div><p><span>Crypto Hacks Totaled $19B Since 2011: Crystal Intelligence</span></p></div></div></li><li><div><div><p><img src=\"https://cdn.jwplayer.com/v2/media/hpNLRkVb/poster.jpg?width=720\" alt=\"Over $67M in Crypto Lost to Hacks and Exploits in February: Immunefi Report\" /></p><p><span>00:56</span></p></div><div><p><span>Over $67M in Crypto Lost to Hacks and Exploits in February: Immunefi Report</span></p></div></div></li><li><div><div><p><img src=\"https://cdn.jwplayer.com/v2/media/clRF5DIL/poster.jpg?width=720\" alt=\"Running With Crypto: 5 Questions With TRM Labs' Ari Redbord\" /></p><p><span>00:59</span></p></div><div><p><span>Running With Crypto: 5 Questions With TRM Labs' Ari Redbord</span></p></div></div></li></div><div><p>A cryptocurrency user has lost $68 million worth of wrapped bitcoin (WBTC) after falling victim to an address poisoning exploit, according to <a href=\"https://twitter.com/CertiKAlert/status/1786378165050306774\" target=\"_blank\">blockchain security firm CertiK</a>.</p></div></div><div><div><p>Address poisoning is a technique that involves tricking the victim into sending a legitimate transaction to the wrong wallet address by mimicking the first and last six characters of the true wallet address and depending on the sender to miss the discrepancy in the intervening characters. Wallet addresses can be as long as 42 characters.</p></div><div><p>In this case, the exploiter mimicked a 0.05 ether <a target=\"_blank\" href=\"https://coindesk.com/price/ethereum/\" title=\"Ethereum Price | ETH Price Index and Live Chart - CoinDesk\">(ETH)</a> transaction before receiving 1,155 WBTC from the victim.</p></div></div><div><div><p>Security platform <a href=\"https://twitter.com/CyversAlerts/status/1786363410243858869\" target=\"_blank\">Cyvers</a> and blockchain sleuth <a href=\"https://t.me/investigations/114\" target=\"_blank\">ZachXBT</a> confirmed that $68 million had been lost to an address poisoning scam.</p></div><div><p>Crypto investors <a href=\"https://www.coindesk.com/tech/2023/12/27/crypto-users-lost-2b-to-hacks-scams-and-exploits-in-2023-defi-says/\" target=\"_blank\">lost $2 billion to hacks</a>, scams and exploits across decentralized finance (DeFi) in 2023 and an additional <a href=\"https://www.coindesk.com/video/crypto-lost-dollar333m-to-hacks-in-q1-of-2024-immunefi/\" target=\"_blank\">$333 million was stolen</a> in the first quarter.</p></div><p>Edited by Sheldon Reback.</p></div></div><div><p>Disclosure</p><div><p>Please note that our <a target=\"_blank\" href=\"https://www.coindesk.com/privacy/\">privacy policy</a>, <a target=\"_blank\" href=\"https://www.coindesk.com/terms/\">terms of use</a>, <a target=\"_blank\" href=\"https://www.coindesk.com/privacy/#cookies\">cookies</a>, and <a target=\"_blank\" href=\"https://www.coindesk.com/privacy/#dnsmpi\">do not sell my personal information</a> has been updated.</p><p>CoinDesk is an <a target=\"_blank\" href=\"https://www.coindesk.com/business/2023/02/20/coindesk-wins-a-polk-award-a-top-journalism-prize-for-explosive-ftx-coverage/\">award-winning</a> media outlet that covers the cryptocurrency industry. Its journalists abide by a <a target=\"_blank\" href=\"https://www.coindesk.com/ethics/\">strict set of editorial policies</a>. In November 2023, <a target=\"_blank\" href=\"https://bullish.com/news-insights/news/bullish-acquires-coindesk-from-digital-currency-group/\">CoinDesk was acquired</a> by the Bullish group, owner of <a target=\"_blank\" href=\"https://bullish.com/\">Bullish</a>, a regulated, digital assets exchange. The Bullish group is majority-owned by <a target=\"_blank\" href=\"https://b1.com/\">Block.one</a>; both companies have <a target=\"_blank\" href=\"https://b1.com/portfolio/\">interests</a> in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk employees, including journalists, may receive options in the Bullish group as part of their compensation.</p></div></div><div><div><a target=\"_blank\" href=\"https://www.coindesk.com/author/oliver-knight/\"><div><picture><source media=\"(min-width: 1024px)\" sizes=\"(min-width: 1024px) 192px, 100vw\" type=\"image/webp\" srcset=\"https://www.coindesk.com/resizer/NPkwseGxIFWlL3O-NBk3NfUNI_M=/192x192/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 192w, https://www.coindesk.com/resizer/jGtUET3yHXmZyJcu9HB07wOv8E0=/384x384/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 384w\"></source><source media=\"(min-width: 1024px)\" sizes=\"(min-width: 1024px) 192px, 100vw\" type=\"image/jpeg\" srcset=\"https://www.coindesk.com/resizer/NoRGEB_-QaYjZ-FY_ID988Dg2Ys=/192x192/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 192w, https://www.coindesk.com/resizer/bbDeAA38U2DClWQM8cAyQ6P22Eo=/384x384/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 384w\"></source><source media=\"(min-width: 600px) and (max-width: 1023px)\" sizes=\"(min-width: 600px) 72px\" type=\"image/webp\" srcset=\"https://www.coindesk.com/resizer/NTNcvOA6CZzzXSVtxHAmOd4Nc_Q=/72x72/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 72w, https://www.coindesk.com/resizer/eij76XbvPDu9Yd4KIBDVCtPMb9w=/144x144/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 144w, https://www.coindesk.com/resizer/eMSDUhY0T280-Ddh7oeTfdZ_IqE=/216x216/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 216w\"></source><source media=\"(min-width: 600px) and (max-width: 1023px)\" sizes=\"(min-width: 600px) 72px\" type=\"image/jpeg\" srcset=\"https://www.coindesk.com/resizer/NhGEQ5mIakqps-vs_BGrYp0ZFHo=/72x72/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 72w, https://www.coindesk.com/resizer/DSt7GYw6OucRMXHbgtN_CLZwQTk=/144x144/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 144w, https://www.coindesk.com/resizer/fJmQ_Rdt_PERC7P7Z97hLODtISA=/216x216/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 216w\"></source><source media=\"(max-width: 599px)\" sizes=\"(max-width: 599px) 72px\" type=\"image/webp\" srcset=\"https://www.coindesk.com/resizer/NTNcvOA6CZzzXSVtxHAmOd4Nc_Q=/72x72/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 72w, https://www.coindesk.com/resizer/eij76XbvPDu9Yd4KIBDVCtPMb9w=/144x144/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 144w, https://www.coindesk.com/resizer/eMSDUhY0T280-Ddh7oeTfdZ_IqE=/216x216/filters:quality(80):format(webp)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 216w\"></source><source media=\"(max-width: 599px)\" sizes=\"(max-width: 599px) 72px\" type=\"image/jpeg\" srcset=\"https://www.coindesk.com/resizer/NhGEQ5mIakqps-vs_BGrYp0ZFHo=/72x72/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 72w, https://www.coindesk.com/resizer/DSt7GYw6OucRMXHbgtN_CLZwQTk=/144x144/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 144w, https://www.coindesk.com/resizer/fJmQ_Rdt_PERC7P7Z97hLODtISA=/216x216/filters:quality(80):format(jpeg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg 216w\"></source><img src=\"https://www.coindesk.com/resizer/tFvoTAkbu6m0gRj_AU6HlfsSJSM=/72x72/filters:quality(80):format(jpg)/www.coindesk.com/resizer/fczAGHsWLFXiMV23oZZmkW19Ots=/arc-photo-coindesk/arc2-prod/public/D4HEG34XFVFVJHPXEEJAEFZ3SI.jpg\" alt=\"Oliver Knight\" /></picture></div></a></div><div><p>Oliver Knight is a CoinDesk reporter based between London and Lisbon. He does not own any crypto.</p></div></div></article>",
  "author": "@coindesk",
  "favicon": "https://www.coindesk.com/pf/resources/images/192x192.png?d=364",
  "source": "coindesk.com",
  "published": "2024-05-03T14:13:48.835Z",
  "ttr": 69,
  "type": "article"
}