Skip to content
Finbold Logo

To keep going please Log in.

or

Or sign in / sign up with password?

By submitting my information, I agree to the Privacy Policy and Terms of Service.

To keep going please Log in.

or

Or sign in / sign up with password?

By submitting my information, I agree to the Privacy Policy and Terms of Service.

To keep going please Log in.

or

Or sign in / sign up with password?

By submitting my information, I agree to the Privacy Policy and Terms of Service.

To keep going please Log in.

or

Or sign in / sign up with password?

By submitting my information, I agree to the Privacy Policy and Terms of Service.

Crypto trader loses over $12 million in ‘painful’ mistake

Crypto trader loses over $12 million in ‘painful’ mistake
Paul L.
Paul L.
Cryptocurrency

A cryptocurrency trader has lost more than $12 million worth of Ethereum (ETH) after mistakenly sending funds to a fraudulent wallet address, in what blockchain data suggests was a successful address-poisoning attack.

On-chain records show the victim address, identified as 0xd674, had an established pattern of transferring large sums of ETH to a Galaxy Digital deposit wallet, according to insights shared by Lookonchain on January 31.

This repeated behavior appears to have been exploited by an attacker who generated a malicious address designed to closely resemble Galaxy Digital’s legitimate deposit address, matching the same opening and closing characters.

Transaction history indicates the attacker repeatedly sent small-value transfers to the victim’s wallet over time. 

To this end, the dust transactions caused the poisoned address to appear alongside legitimate destinations in the wallet’s recent activity, increasing the likelihood of confusion during future transfers.

Approximately 11 hours before the loss was detected, the trader initiated another Ethereum transfer intended for Galaxy Digital. 

Failure to verify address 

Instead of manually verifying the destination, the address was copied directly from the transaction history. As a result, 4,556 ETH, valued at around $12.4 million at the time of the transaction, was sent to the attacker-controlled wallet.

Notably, the transfer was executed in a single outbound transaction, with the funds leaving the victim’s wallet immediately and no subsequent corrective transactions recorded. 

The poisoned address successfully received the Ethereum, and there has been no indication of recovery efforts or fund reversal, consistent with the irreversible nature of blockchain settlements.

Overall, the incident highlights the growing prevalence of address-poisoning attacks, where malicious actors exploit visual similarities in wallet addresses rather than vulnerabilities in smart contracts or protocols. 

Such attacks rely on user error rather than technical exploits, making even experienced traders vulnerable when handling high-value transfers.

Featured image via Shutterstock





Best Crypto Exchange for Intermediate Traders and Investors

  • Invest in cryptocurrencies and 3,000+ other assets including stocks and precious metals.

  • 0% commission on stocks - buy in bulk or just a fraction from as little as $10. Other fees apply. For more information, visit etoro.com/trading/fees.

  • Copy top-performing traders in real time, automatically.

  • eToro USA is registered with FINRA for securities trading.

logo
30+ million Users worldwide
Get Started
Securities trading offered by eToro USA Securities, Inc. (“the BD”), member of FINRA and SIPC. Cryptocurrency offered by eToro USA LLC (“the MSB”) (NMLS: 1769299) and is not FDIC or SIPC insured. Investing involves risk, and content is provided for educational purposes only, does not imply a recommendation, and is not a guarantee of future performance. Finbold.com is not an affiliate and may be compensated if you access certain products or services offered by the MSB and/or the BD
Finbold Career

Join Finbold's newsroom, become a crypto reporter today!

Apply now to join Finbold as a crypto/finance news writer!

Open Positions

Latest posts

Finance Digest

By subscribing you agree with Finbold T&C’s & Privacy Policy

Related posts

Paul
Paul
Cryptocurrency

Finbold AI Agent

How AI Price Predictions Work

We use cutting-edge AI models to forecast future prices for stocks and crypto.

Home
Finance news Crypto news Stock news Technology news Startup news Regulation news Banking news
Sign up Log In

IMPORTANT NOTICE

Finbold is a news and information website. This Site may contain sponsored content, advertisements, and third-party materials, for which Finbold expressly disclaims any liability.

RISK WARNING: Cryptocurrencies are high-risk investments and you should not expect to be protected if something goes wrong. Don’t invest unless you’re prepared to lose all the money you invest. (Click here to learn more about cryptocurrency risks.)

By accessing this Site, you acknowledge that you understand these risks and that Finbold bears no responsibility for any losses, damages, or consequences resulting from your use of the Site or reliance on its content. Click here to learn more.