• Blockletter
  • Posts
  • Massive Crypto Whale Loses Over $32 Million in Latest Phishing Scam

Massive Crypto Whale Loses Over $32 Million in Latest Phishing Scam

DeFi Security Breach Involves Inferno Drainer Scam-as-a-Service

A Startling Loss for a Crypto Whale

In a shocking security breach, a cryptocurrency whale lost over $32 million in Spark wrapped ether tokens (spWETH) after signing a malicious transaction. Blockchain security service ScamSniffer first reported the incident, identifying it as a phishing attack likely executed through the notorious scam-as-a-service software known as Inferno Drainer.

The Inferno Drainer: A Persistent Threat

The Inferno Drainer is a scam-as-a-service software that has been plaguing the decentralized finance (DeFi) ecosystem. It operates by spoofing popular DeFi protocols, deceiving users into signing transactions that grant scammers control over their wallets. Despite being shut down by its developers in November 2023, Inferno Drainer resurfaced in May 2024, claiming improvements, with "new staff, new ways to work, new support, and new features."

This scam service supports 28 different blockchains and hundreds of DeFi applications. According to data from a Dune Analytics dashboard built by ScamSniffer, Inferno Drainer has stolen over $215 million from more than 200,000 victims across its lifetime.

Details of the Attack

The victim in this incident lost 12,083 Spark wrapped ether tokens, valued at approximately $32.4 million. These tokens were drained from their wallet through a single malicious transaction. Blockchain intelligence firm Arkham attributed the exploit to Inferno Drainer, which has become increasingly notorious for executing sophisticated phishing scams within the crypto space.

While the identity of the whale has not been officially confirmed, blockchain investigator ZachXBT uncovered large transactions from the affected wallet linked to a whale known as CZSamSun (not to be confused with X user @samczsun, a researcher at Paradigm). In a desperate plea, a message from the victim's wallet offered a 20% reward for the return of the stolen funds, though no response from the scammer has been reported.

How to Stay Protected Against Phishing Attacks

This incident serves as a stark reminder of the growing security risks facing crypto traders, especially within decentralized finance platforms. Experts urge users to exercise caution when interacting with DeFi protocols. Blockchain analytics firm LookOnChain shared a warning on X:

"To avoid being phished, please do not click on any unknown links and do not sign any unknown signatures. Always double-check when signing signatures."

Such security measures are essential to safeguard against scams like Inferno Drainer.

As the crypto ecosystem continues to grow, so do the security challenges. Phishing attacks and scam-as-a-service platforms like Inferno Drainer are significant threats that have caused massive financial losses for unsuspecting traders. The incident involving the loss of over $32 million highlights the importance of maintaining heightened awareness, carefully vetting DeFi platforms, and securing digital assets to prevent future attacks.