Beware of New Phishing Scam: User Loses $316K in USDC After Signing Malicious Authorization

New Smart Contract Phishing Attack Uncovered

A recent cybersecurity incident involving cryptocurrency assets has drawn widespread attention. According to reports, a user accidentally signed a malicious authorization transaction disguised as a routine operation, resulting in the immediate transfer of over $316,000 worth of USDC from their account by malicious actors.

In-Depth Analysis of the Attack Method

This incident revolves around the exploitation of the Permit2 smart contract authorization feature. Attackers used carefully crafted phishing pages to lure users into signing seemingly harmless authorization requests. Once confirmed, attackers gained permission to transfer specific assets from the victim's account, completing the theft without the user's knowledge.

• High Stealth: Authorization requests masquerade as normal operations, making anomalies difficult to detect
• Instant Activation: Attackers can act immediately after authorization, leaving no time for user response
• Targeted Approach: Primarily focuses on users holding large amounts of stablecoins

How to Prevent Similar Attacks

To avoid falling victim to similar attacks, users should adopt the following protective measures:

• Carefully review the authorization scope and permission details of each transaction
• Use hardware wallets for significant transactions to add an extra security layer
• Maintain high vigilance against links and transaction requests from unknown sources
• Regularly check authorized contract lists and revoke unnecessary permissions promptly

With the growing adoption of DeFi and smart contract applications, such new attack methods may become more frequent. Users must enhance their security awareness, protecting their assets while enjoying the conveniences of blockchain technology.