去年,链上诈骗者获利超过 140 亿美元,批准网络钓鱼仍然是主要的攻击媒介。 根据链上数据,周三,一名加密货币用户在以太坊上签署网络钓鱼代币批准后损失了近 100 万美元。今年上半年该行业因网络钓鱼损失达 3.66 亿美元。 周四的诈骗嗅探器警报显示,受害者因以太坊网络钓鱼代币审批骗局损失了 999,999 USDt (USDT)。诈骗者首先尝试通过多次调用提取 100 万美元,但因资金不足而失败,几秒钟后,通过在后续转账中提取确切的剩余余额而成功。 “脚本重新计算并提取了准确的剩余余额,”Scam Sniffer 说。 通过网络钓鱼令牌批准进行社会工程已成为一种常见的加密诈骗策略。根据 CertiK 的数据,2025 年发生 248 起网络钓鱼事件,损失总计 7.23 亿美元。诈骗者采用看似无害的交易形式,欺骗受害者让恶意行为者访问他们的钱包。
受害者错误地认为点击“批准”只会启动一个小任务,但恶意链接却允许攻击者从钱包中提取资金。 攻击者通过三笔交易提取了 999,999 美元。来源:Etherscan 骗子重复使用相同的钱包 据报道,本月早些时候,一名钱包持有者在类似事件中连接到虚假交易所并签署恶意合约后损失了 165 万美元。 研究人员瑞安·科尔曼 (Ryan Coleman) 周五表示:“该批准为攻击者提供了无限制的访问权限,使自动清扫器能够耗尽资金。” 相关:法国加强应对加密扳手攻击达到 77 起 区块链安全公司 Chainaanalysis 在 6 月份报告称,到 2025 年,链上诈骗至少会带来 140 亿美元的收入。Chainaanalysis 表示,投资诈骗仍然是主要类别,批准网络钓鱼是其中一些诈骗在链上进行的方式。 Chainaanalysis 高级调查员雷纳托·巴斯托斯 (Renato Bastos) 表示:“诈骗者重复使用相同的钱包、合同的合法审批功能以及受害者之间的兑现路线,这意味着每份报告都暴露了更广泛的网络。”
Scam Sniffer 建议加密货币用户在批准之前仔细检查所有签名请求,避免仓促交易并使用诈骗检测扩展等工具。 地址中毒仍然是一个威胁 地址中毒是诈骗者与网络钓鱼令牌批准一起使用的另一个攻击媒介。 诈骗者创建与目标钱包非常相似的地址,并向该地址发送少量“灰尘”资金,因此用户错误地发送到该地址而不是合法地址。 流行的以太坊钱包 MetaMask 在 6 月份推出了实时地址中毒检测,该工具可以将每个粘贴的地址与钱包之前交互过的地址进行比较。 特点:最大的区块链升级将于 2026 年到来
Onchain scammers netted more than $14 billion last year, and approval phishing remains a primary attack vector.
A crypto user lost nearly $1 million on Wednesday after signing a phishing token approval on Ethereum, according to onchain data. It comes as the industry recorded $366 million in phishing losses in the first half of the year.
A Scam Sniffer alert on Thursday revealed a victim lost 999,999 USDt (USDT) to an Ethereum phishing token approval scam. Scammers first tried draining a rounded $1 million via multicalls but failed due to insufficient funds, then succeeded seconds later by pulling the exact remaining balance in follow-up transfers.
“The script recalculated and pulled the exact remaining balance,” Scam Sniffer said.
Social engineering via phishing token approvals has become a common crypto scam tactic. Phishing losses totaled $723 million across 248 incidents in 2025, according to CertiK. Scammers trick a victim into giving a malicious actor access to their wallet, taking the form of an innocuous-seeming transaction.
The victim falsely believes that clicking “approve” will only initiate a minor task, but malicious links give the attacker approval to drain funds from the wallet.
Attackers extracted $999,999 in three transactions. Source: Etherscan
Scammers reuse the same wallets
Earlier this month, a wallet holder reportedly lost $1.65 million after connecting to a fake exchange and signing a malicious contract in a similar incident.
“The approval gave attackers unlimited access, enabling an automated sweeper to drain funds,” researcher Ryan Coleman said on Friday.
Related: France to strengthen response as crypto wrench attacks hit 77
Blockchain security firm Chainalysis reported in June that onchain scams pulled in at least $14 billion in 2025. Investment scams remained the dominant category, and approval phishing is how some of them play out onchain, said Chainalysis.
“Scammers reuse the same wallets, legitimate approval features from contracts, and cash-out routes across victims, which means each report exposes a wider network,” said Renato Bastos, a senior investigator at Chainalysis.
Scam Sniffer advised crypto users to double-check all signature requests before approving, avoid rushed transactions and use tools such as scam detection extensions.
Address poisoning remains a threat
Address poisoning is another attack vector that scammers use alongside phishing token approvals.
Scammers create addresses very similar to their target wallets and send a tiny amount of “dust” funds to the address, so the user mistakenly sends to this address instead of the legitimate one.
Popular Ethereum wallet MetaMask launched live address poisoning detection in June, a tool that compares each pasted address with addresses that the wallet has previously interacted with.
Features: The biggest blockchain upgrades still to come in 2026