Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Crypto Attack Exploits Wallet Simulation

January 13, 2025
Reading Time: 2 mins read
in Alerts
Crypto Attack Exploits Wallet Simulation

Threat actors have introduced a new tactic known as “transaction simulation spoofing” to steal cryptocurrency. This method targets transaction simulation features in Web3 wallets, which are meant to allow users to preview blockchain transactions before executing them. In one notable case, attackers stole 143.45 Ethereum, worth around $460,000, by exploiting this flaw. The attack manipulates the transaction simulation process to deceive users into approving fraudulent transactions, leading to significant financial loss.

The attack unfolds when victims are lured to a malicious website that mimics a legitimate platform. This site triggers a simulation that appears to show a small ETH transfer to the user, convincing them that the transaction is legitimate. However, a time delay between the simulation and the actual execution of the transaction enables the attackers to alter the on-chain contract, changing the transaction’s outcome without the user’s knowledge. By the time the victim signs the transaction, their crypto has already been redirected to the attacker’s wallet.

ScamSniffer, the platform that uncovered this new form of attack, notes that it represents a significant evolution in phishing techniques. Unlike traditional phishing, where attackers rely on direct deception, this method exploits trusted wallet features that users believe are secure. The time gap between the simulation and execution complicates detection, making it a sophisticated and dangerous attack vector. As a result, this attack type presents a challenge for both users and security systems to identify and prevent.

In response to the growing threat, ScamSniffer recommends that Web3 wallets reduce simulation refresh rates to match blockchain block times and ensure that simulations are refreshed before critical operations. Additionally, they suggest adding expiration warnings to alert users about the potential risks of manipulated transactions. Cryptocurrency holders are advised to be cautious when interacting with unfamiliar websites, especially those offering “free claims,” and to only trust verified decentralized applications (dApps) to avoid falling victim to this advanced form of phishing.

Reference:
  • Crypto Attackers Use Transaction Simulation Spoofing to Steal Ethereum
Tags: Cyber AlertsCyber Alerts 2025CyberattackCybersecurityJanuary 2025Web3
ADVERTISEMENT

Related Posts

WatchGuard Devices At Risk Of RCE

BitLocker May Lock Your Data Silently

October 21, 2025
WatchGuard Devices At Risk Of RCE

North Korea Hackers Use New JS Malware

October 21, 2025
WatchGuard Devices At Risk Of RCE

WatchGuard Devices At Risk Of RCE

October 21, 2025
Experian Fined For Data Collection

TikTok Videos Driving Infostealer Attacks

October 20, 2025
Experian Fined For Data Collection

Chrome Extensions Hijack WhatsApp Web

October 20, 2025
Experian Fined For Data Collection

Google Ads Used To Push Fake Software

October 20, 2025

Latest Alerts

BitLocker May Lock Your Data Silently

North Korea Hackers Use New JS Malware

WatchGuard Devices At Risk Of RCE

TikTok Videos Driving Infostealer Attacks

Chrome Extensions Hijack WhatsApp Web

Google Ads Used To Push Fake Software

Subscribe to our newsletter

    Latest Incidents

    Muji Stops Online Sales After Attack

    Major Telco Confirms Cyber Breach

    Russian Hackers Leak UK MoD Files

    AWS Outage Disrupts Major Services

    Envoy Air Hit By Oracle System Hack

    F5 Breach Hits 262000 BIGIP Systems

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial