Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Crypto Attack Exploits Wallet Simulation

January 13, 2025
Reading Time: 2 mins read
in Alerts
Crypto Attack Exploits Wallet Simulation

Threat actors have introduced a new tactic known as “transaction simulation spoofing” to steal cryptocurrency. This method targets transaction simulation features in Web3 wallets, which are meant to allow users to preview blockchain transactions before executing them. In one notable case, attackers stole 143.45 Ethereum, worth around $460,000, by exploiting this flaw. The attack manipulates the transaction simulation process to deceive users into approving fraudulent transactions, leading to significant financial loss.

The attack unfolds when victims are lured to a malicious website that mimics a legitimate platform. This site triggers a simulation that appears to show a small ETH transfer to the user, convincing them that the transaction is legitimate. However, a time delay between the simulation and the actual execution of the transaction enables the attackers to alter the on-chain contract, changing the transaction’s outcome without the user’s knowledge. By the time the victim signs the transaction, their crypto has already been redirected to the attacker’s wallet.

ScamSniffer, the platform that uncovered this new form of attack, notes that it represents a significant evolution in phishing techniques. Unlike traditional phishing, where attackers rely on direct deception, this method exploits trusted wallet features that users believe are secure. The time gap between the simulation and execution complicates detection, making it a sophisticated and dangerous attack vector. As a result, this attack type presents a challenge for both users and security systems to identify and prevent.

In response to the growing threat, ScamSniffer recommends that Web3 wallets reduce simulation refresh rates to match blockchain block times and ensure that simulations are refreshed before critical operations. Additionally, they suggest adding expiration warnings to alert users about the potential risks of manipulated transactions. Cryptocurrency holders are advised to be cautious when interacting with unfamiliar websites, especially those offering “free claims,” and to only trust verified decentralized applications (dApps) to avoid falling victim to this advanced form of phishing.

Reference:
  • Crypto Attackers Use Transaction Simulation Spoofing to Steal Ethereum
Tags: Cyber AlertsCyber Alerts 2025CyberattackCybersecurityJanuary 2025Web3
ADVERTISEMENT

Related Posts

Hackers Target Libraesva Email Flaw

Hackers Target Libraesva Email Flaw

September 30, 2025
Hackers Target Libraesva Email Flaw

ShadowV2 Botnet Targets Misconfigured AWS

September 30, 2025
Hackers Target Libraesva Email Flaw

Cisco Warns Of IOS Zero Day Bug

September 30, 2025
Fake Microsoft Teams Installers Spread

Fake Microsoft Teams Installers Spread

September 30, 2025
Fake Microsoft Teams Installers Spread

Cybercriminals Use Facebook Google Ads

September 30, 2025
Fake Microsoft Teams Installers Spread

CISA Warns Of Critical Sudo Flaw

September 30, 2025

Latest Alerts

Hackers Target Libraesva Email Flaw

ShadowV2 Botnet Targets Misconfigured AWS

Cisco Warns Of IOS Zero Day Bug

CISA Warns Of Critical Sudo Flaw

Cybercriminals Use Facebook Google Ads

Fake Microsoft Teams Installers Spread

Subscribe to our newsletter

    Latest Incidents

    Ukrainian Hackers Breach Crimean Servers

    Ransomware Gang Claims Maryland Breach

    Arizona School District Data Breach

    Attackers Take Down Asahi Brewer

    Harrods Alerts Customers To Breach

    Hackers Steal Photos From Kido Nursery

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial