The cryptocurrency ecosystem has once again witnessed a significant theft, this time involving a staggering $71 million worth of Wrapped Bitcoin (WBTC). The incident, which took place on May 3, highlights the importance of exercising caution and vigilance when dealing with digital assets.
TLDR
- A scammer stole $71 million worth of Wrapped Bitcoin (WBTC) from an investor by creating a similar-looking wallet address.
- The stolen funds remained dormant for six days before the scammer started moving them across multiple wallets (around 400) to obfuscate the trail.
- The scammer initially converted the stolen 1,155 WBTC to approximately 23,000 ETH.
- Crypto scams and hacks are more prevalent during bull markets when asset values are higher.
- A new type of scam allows bad actors to drain wallets without transaction approval by tricking users into signing a malicious message.
According to reports, an investor fell victim to a sophisticated wallet impersonation scam, commonly referred to as a “wallet poisoning” attack.
The scammer created a wallet address with alphanumeric characters similar to the intended recipient’s address, differing only in the middle characters, which are often hidden on platforms for visual appeal.
The victim, like many others, validated the wallet address by matching the first and last few characters, a common practice but one that can lead to costly mistakes.
Unaware of the subtle difference, the investor transferred a substantial 97% of their total WBTC holdings, amounting to 1,155 WBTC, to the malicious address controlled by the scammer.
In the aftermath of the theft, the scammer remained silent for six days, leaving the stolen funds dormant in their wallet. This period of inactivity is not uncommon, as cybercriminals often wait for the initial commotion to subside before attempting to move or launder the stolen assets.
On May 8, blockchain investigation firm PeckShield detected movement of the stolen funds. The scammer began breaking down the loot into multiple parts and distributing it across approximately 400 different crypto wallets.
This tactic, known as “chain-hopping,” is employed by cybercriminals to dilute the stolen funds and reduce traceability, making it more difficult for authorities and investigators to track and recover the assets.
Initially, the scammer converted the stolen 1,155 WBTC into approximately 23,000 ETH, a common practice among hackers as it allows for easier siphoning through privacy protocols like Tornado Cash.
Despite the scammer’s efforts to obfuscate the trail, PeckShield reported that all the stolen funds could still be traced back to the unknown perpetrator at the time of writing.
#PeckShieldAlert #Layering The scammer who grabbed ~$71 million worth of $WBTC via a poisoning #scam has laundered the stolen funds (~23K $ETH) by sending and spreading them across a large number of wallets. https://t.co/Blnw5TMT99 pic.twitter.com/CATCb6t1LL
— PeckShieldAlert (@PeckShieldAlert) May 8, 2024
Incidents like this serve as a stark reminder that crypto scams and hacks are more prevalent during bull markets, when asset values are higher and potentially more lucrative for cybercriminals.
Investors and enthusiasts are encouraged to exercise heightened caution and follow best practices for securely storing and managing their digital assets.
Cointelegraph’s investigation also uncovered a new type of scam that allows bad actors to drain users’ wallets without requiring transaction approval. This scam targets tokens that comply with the ERC-2612 token standard, which enables “gas-less” transfers or transfers from wallets that do not hold ETH.