Scammers pilfered $55m from 40k victims in January alone, data shows

Analysts at Scam Sniffer say bad actors stole $55 million worth of crypto and created over 11,000 phishing websites in January alone.

In an X thread on Feb. 9, Scam Sniffer revealed a trend observed in January, noting a rise in phishing attacks coinciding with heightened activity within crypto communities following a series of airdrops in the previous month.

According to the data, scammers created over 11,400 phishing websites in January, impersonating Manta Network, Frame, SatoshiVM, AltLayer, Dymension, zkSync, Pyth, OpenSea, Optimism, Blast, and others. Apparently, their efforts paid off as cybercriminals pilfered nearly $55 million worth of crypto across Ethereum Virtual Machine-based networks, with the top seven victims losing $17 million.

“The majority of the thefts occurred on the Ethereum mainnet, followed by Arbitrum, BNB, Optimism, and Polygon.”

Scam Sniffer

As per Scam Sniffer, a common method employed by hackers involved exploiting the ERC-20 Permit function, deceiving users into unwittingly transferring funds from their non-custodial wallets under the guise of legitimate operations.

Additionally, perpetrators increasingly leveraged the increaseAllowance function, enabling them to manipulate token allowances granted to malicious smart contracts. Many people fell for scams because cybercriminals were actively posting fake comments on X pretending to be real projects like Optimism and zKSync, underscoring the persistent threat posed by fraudulent online presences.

As crypto.news previously reported, illicit crypto addresses received over $24 billion worth of crypto in 2023, down from an estimated $39.6 billion in 2022. According to Chainalysis data, there has been a transition in the types of assets involved in crypto crime, with stablecoins now constituting the majority of illicit transaction volume.