Inferno Drainer Exploits Ethereum Upgrade, Steals $150,000

Coin WorldSunday, May 25, 2025 11:13 pm ET
1min read

In a recent development, the blockchain security platform Scam Sniffer revealed that the phishing group Inferno Drainer has exploited the Ethereum EIP-7702 upgrade, leading to losses of nearly $150,000 from a single transaction. The EIP-7702 feature, introduced as part of the Pectra upgrade, allows an externally owned account (EOA) to temporarily acquire smart contract functionalities during transactions, creating an opportunity for misuse.

This incident marks a significant shift in phishing tactics, as highlighted by industry expert and SlowMist founder Cao Yin. Instead of directly hijacking wallets, attackers are now tricking users into invoking MetaMask’s “execute” command. This action allows for covert malicious approvals that enable asset transfers without the user's explicit knowledge, indicating a troubling evolution in the complexity of online security threats within the cryptocurrency ecosystem.

Comments



Add a public comment...
No comments

No comments yet

Disclaimer: The news articles available on this platform are generated in whole or in part by artificial intelligence and may not have been reviewed or fact checked by human editors. While we make reasonable efforts to ensure the quality and accuracy of the content, we make no representations or warranties, express or implied, as to the truthfulness, reliability, completeness, or timeliness of any information provided. It is your sole responsibility to independently verify any facts, statements, or claims prior to acting upon them. Ainvest Fintech Inc expressly disclaims all liability for any loss, damage, or harm arising from the use of or reliance on AI-generated content, including but not limited to direct, indirect, incidental, or consequential damages.