A crypto user has lost nearly $1 million after approving a malicious Ethereum transaction that gave scammers access to drain almost the entire wallet balance, addingA crypto user has lost nearly $1 million after approving a malicious Ethereum transaction that gave scammers access to drain almost the entire wallet balance, adding

Ethereum phishing scam drains nearly $1 million from crypto wallet

2026/07/09 15:21
3분 읽기
이 콘텐츠에 대한 의견이나 우려 사항이 있으시면 crypto.news@mexc.com으로 연락주시기 바랍니다

A crypto user has lost nearly $1 million after approving a malicious Ethereum transaction that gave scammers access to drain almost the entire wallet balance, adding to hundreds of millions of dollars in phishing losses recorded this year.

Summary
  • A crypto user lost nearly $1 million after approving a malicious Ethereum transaction that allowed scammers to drain the wallet.
  • Phishing scams caused $723 million in losses across 248 incidents in 2025 as approval based attacks continued targeting crypto users.
  • The latest theft follows another multimillion dollar onchain loss, highlighting separate risks from phishing approvals and flawed transaction routing.

According to blockchain security platform Scam Sniffer, the victim lost 999,999 Tether (USDT) in an Ethereum phishing token approval scam on Wednesday after signing a malicious approval request.

On-chain data showed the attackers first attempted to withdraw a rounded $1 million through multicall transactions, but the transfer failed because the wallet held slightly less than that amount.

Seconds later, the attackers adjusted their script and successfully withdrew the wallet’s exact remaining balance.

“The script recalculated and pulled the exact remaining balance,” Scam Sniffer said.

Phishing approvals continue draining crypto wallets

Security researchers say approval phishing remains one of the most common social engineering attacks in crypto because users unknowingly grant unlimited spending permissions while believing they are approving a harmless transaction.

According to blockchain security firm CertiK, phishing scams caused $723 million in losses across 248 incidents during 2025. In these attacks, victims are typically tricked into signing malicious token approvals, allowing attackers to move funds from their wallets without requiring another signature.

The latest incident follows another major wallet compromise reported earlier this month. In that case, a crypto holder lost about $1.65 million after connecting to a fake exchange and signing a malicious smart contract.

“The approval gave attackers unlimited access, enabling an automated sweeper to drain funds,” researcher Ryan Coleman said on Friday.

The latest phishing loss comes only days after another high-profile onchain incident highlighted a different risk facing crypto users. Earlier this week, a trader lost nearly $2 million after a decentralized exchange routed an Ether swap through a low-liquidity pool, allowing a same-block arbitrage trade to extract most of the transaction’s value. 

According to GoPlus Security, the loss was caused by transaction routing rather than phishing, prompting researchers to urge users to review execution paths carefully before confirming onchain transactions.

Scam Sniffer advised users to carefully review every signature request, avoid rushing approvals and use scam detection tools or browser extensions before signing wallet transactions.

World Cup Combo: Aim for 200x

World Cup Combo: Aim for 200xWorld Cup Combo: Aim for 200x

Combine up to 20 World Cup matches in one order

면책 조항: 본 사이트에 재게시된 글들은 공개 플랫폼에서 가져온 것으로 정보 제공 목적으로만 제공됩니다. 이는 반드시 MEXC의 견해를 반영하는 것은 아닙니다. 모든 권리는 원저자에게 있습니다. 제3자의 권리를 침해하는 콘텐츠가 있다고 판단될 경우, crypto.news@mexc.com으로 연락하여 삭제 요청을 해주시기 바랍니다. MEXC는 콘텐츠의 정확성, 완전성 또는 시의적절성에 대해 어떠한 보증도 하지 않으며, 제공된 정보에 기반하여 취해진 어떠한 조치에 대해서도 책임을 지지 않습니다. 본 콘텐츠는 금융, 법률 또는 기타 전문적인 조언을 구성하지 않으며, MEXC의 추천이나 보증으로 간주되어서는 안 됩니다.

$5M in SPCX Positions for Free

$5M in SPCX Positions for Free$5M in SPCX Positions for Free

0 fees, 100x leverage, daily prizes, 7K+ stocks/ETFs