Найти в Дзене
ℂ𝕙𝕒𝕟𝕟𝕖𝕝 𝔻𝕠𝕞𝕠𝕧𝕠𝕚
20 подписчиков

⚠️ EIP‑7702 just got exploited — here’s what happened

1 мин
⚠️ EIP‑7702 just got exploited — here’s what happened Hey friends — if you’re using MetaMask or following Ethereum upgrades, you need to hear this. The shiny new EIP‑7702 from the May Pectra upgrade just got exploited — and the hackers walked away with $150K in a single case. Here’s the breakdown 👇 🧠 What’s EIP‑7702, anyway? It lets regular wallets (EOAs) temporarily act like smart contracts. That means batch transactions, gas sponsorship, and other cool stuff — all in a single click. Great for UX, but… here’s the catch. 🥸 A new kind of phishing A group called Inferno Drainer tricked users into signing a fake MetaMask delegation. Looks harmless — one simple approval. But in the background? Your wallet gives up access to all your tokens — and they drain it dry. One poor soul lost $150,000 in a single hit. Brutal. 📊 How bad is it? • Over 12,000 suspicious EIP‑7702 transactions so far • Nearly 97% tied to the same sweeper contract: “CrimeEnjoyor” • Total losses estimated above $5

⚠️ EIP‑7702 just got exploited — here’s what happened

Hey friends — if you’re using MetaMask or following Ethereum upgrades, you need to hear this. The shiny new EIP‑7702 from the May Pectra upgrade just got exploited — and the hackers walked away with $150K in a single case. Here’s the breakdown 👇

🧠 What’s EIP‑7702, anyway?

It lets regular wallets (EOAs) temporarily act like smart contracts. That means batch transactions, gas sponsorship, and other cool stuff — all in a single click.

Great for UX, but… here’s the catch.

🥸 A new kind of phishing

A group called Inferno Drainer tricked users into signing a fake MetaMask delegation.

Looks harmless — one simple approval.

But in the background?

Your wallet gives up access to all your tokens — and they drain it dry. One poor soul lost $150,000 in a single hit. Brutal.

📊 How bad is it?

• Over 12,000 suspicious EIP‑7702 transactions so far

• Nearly 97% tied to the same sweeper contract: “CrimeEnjoyor”

• Total losses estimated above $5 million just in April–May 2025

👥 What experts are saying:

“It’s not key theft — it’s next-level phishing. Delegation feels safe, and that’s the trap.” — Yu Xian, SlowMist

“The attack runs silently in the background. Your best defense? Regularly monitor token approvals.” — ScamSniffer via Binance

🛡️ What to do now

1. ✅ Check your approvals on Etherscan or Revoke.cash

2. 🔍 Verify contract addresses — don’t trust random delegation prompts

3. ❌ Never accept EIP‑7702 upgrades from unknown links

4. ♻️ Revoke old approvals, especially after airdrops or meme coin trades

🧭 Final thoughts

EIP‑7702 is powerful, no doubt. But it’s also risky when users don’t see what’s really happening under the hood.

Until things get safer — discipline and awareness are your best protection.

Would you trust something like EIP‑7702? Or is it too risky?

Drop your thoughts in the comments 💬👇

#Web3Security #Ethereum #EIP7702

🌟 If you liked the post, leave a reaction. I'll go find something else interesting for you.

ℂ𝕙𝕒𝕟𝕟𝕖𝕝 | ℂ𝕙𝕒𝕥 | 𝕏