Hot Topic Ranking

Hot Score

Whale buys millions of PIPPIN

Ronin Launches AI Agent

Grayscale is bullish on Bitcoin's prospects.

Buy Bitcoin on dips

Coinbase Receives Subpoena

Tether's foray into AI film

Morgan Stanley: March rate cut likely

Giant whales AAVE, UNI make a killing

Binance lists three new coins

U.S. Nonfarm Payrolls Rise More Than Expected

Quantum computers cannot crack Bitcoin.

U.S. Justice Department Accuses Russian National of Money Laundering

FDIC Vice Chair Backs Cryptocurrencies

CFPB to Regulate Stablecoins

CFTC Enforcement Chief Departs

Related Currencies

#User lost $460,000 in a simulated trading scam.#

Posts

Hot Topic Details

Hot Topic Overview

Ace Hot Topic Analysis

Public Sentiment · Discussion Word Cloud

Classic Views

Hot Topic Details

Hot Topic Overview

Overview

Recently, a user lost 143.45 ETH, worth approximately $460,800, due to a transaction simulation scam. The attacker exploited the delay between transaction simulation and execution in Web3 wallets by creating a phishing website that manipulated the on-chain state immediately after the transaction was submitted. The attack process involved the phishing website initiating a "Claim" ETH transfer request. The wallet simulated receiving a small amount of ETH, but the backend modified the contract state, ultimately leading to the user's wallet assets being depleted. This incident serves as a reminder for users to carefully identify phishing websites and be aware of the difference between transaction simulation and actual execution when conducting Web3 transactions, to avoid similar losses.

Ace Hot Topic Analysis

Analysis

Recently, a user lost 143.45 ETH (approximately $460,800) due to a transaction simulation scam, raising concerns about the security of Web3 wallets. The attacker exploited the delay between transaction simulation and execution by creating a phishing website and manipulating the on-chain state immediately after the user submitted the transaction. Specifically, the attacker initiated a "Claim" ETH transfer request, and the wallet simulated receiving a small amount of ETH. However, the attacker subsequently modified the contract state, resulting in the user's actual transaction draining their wallet assets. This incident serves as a reminder that even security features like transaction simulation can be exploited by attackers. Users need to exercise extreme caution when conducting Web3 transactions, avoid visiting suspicious websites, and carefully review transaction details, ensuring the correct target address and amount.