New data from a cybersecurity firm shows that recent phishing attacks via smart contract platform Solana (SOL) have stolen more than $4 million in crypto assets.
In a new blog post, security firm Scam Sniffer says that in the past month alone, bad actors were able to exploit $4.17 million worth of digital assets belonging to approximately 4,000 victims through the Solana blockchain using various phishing methods .
“Scam Sniffer first became aware of it when a victim reported an airdrop phishing incident [SlowMist founder] evil cos. The victim, a holder of ZERO tokens, opened a phishing website linked to an NFT (non-fungible token) air-dropped, leading to the theft of assets after signing a malicious transaction…
The targeted users, holders of ZERO tokens, were forwarded the phishing NFTs. Curiosity led users to open the phishing website, and even when confronted with a message saying the simulation failed, they confirmed the transaction. However, the details of the transaction remained hidden and signing it resulted in the theft of assets.”
According to Scam Sniffer, the first hack netted a total of $2.14 million worth of memecoins Bonk (BONK) and ANALOS and Analysoor (ZERO).
The second set of exploits harvested approximately $2.02 million worth of ANALOS, BONK, and Silly Dragon (SILLY), another meme item, as well as the decentralized wireless telephone network Helium Mobile (MOBILE).
The cybersecurity firm further notes that hacks through SOL can only be initiated through direct transaction/signature confirmations and that scammers are constantly improving their methods.
“Unlike most thefts on Ethereum, which are due to malicious approval issues, most phishing signatures on Solana involve initiating direct transfers. While Solana supports transaction simulation, we also see methods that exploit anti-simulation and fake simulation results to confuse users and increase the likelihood of malicious signatures…
As you can see, the wallet scam phenomenon is constantly expanding, and the blockchain is like a dark forest. With just one signature confirmation, you can lose everything as these scammers are constantly perfecting their methods to contact and trick victims at every step.
You must remain alert to avoid becoming the next victim.”
Don’t miss a beat – Subscribe to receive email alerts straight to your inbox
Check price action
follow us on TweetFacebook and Telegram
Surf to the Daily Hodl mix
Generated image: Midjourney