GoPlus Warns of Phishing Attack on EIP-7702 Smart Accounts $10,000 Lost

GoPlus Security has issued a security alert regarding a new phishing attack targeting EIP-7702 Smart Accounts. This attack has been observed on the Ethereum mainnet, BNB Chain, and Base Chain. Within just three days of its emergence, thousands of addresses have been compromised, resulting in losses exceeding $10,000 in cryptocurrency assets.

The attack involves the use of a single address for authorization phishing. Once a user authorizes this address, it can automatically transfer any subsequently received BNB or other tokens away from the user's account. This method of attack highlights the vulnerability of smart accounts to phishing schemes, particularly when users are not cautious about the addresses they authorize.

The GoPlus security team has emphasized the importance of user vigilance. They advise users never to transfer funds or authorize transactions to unfamiliar addresses. The current scam is leveraging historically leaked private key addresses for large-scale phishing attacks, making it crucial for users to be extra cautious and verify the legitimacy of any address they interact with.

This incident underscores the ongoing threat of phishing attacks in the cryptocurrency space. As smart accounts become more prevalent, it is essential for users to stay informed about the latest security practices and remain vigilant against potential threats. The GoPlus security team's alert serves as a reminder of the importance of security awareness in protecting cryptocurrency assets.