Ethereum Hackers Exploit Create2 Code, Stealing $60M in Six Months

  • Ethereum’s security is compromised as hackers employ Create2 code to drain wallets undetected.
  • Over $60 million in crypto assets stolen, impacting nearly 100,000 users.
  • “An ingenious yet alarming use of Ethereum’s features,” reports on-chain investigation team ScamSniffer.

Investigation reveals a sophisticated Ethereum wallet drainer exploiting the Create2 code, successfully bypassing security alerts and leading to substantial losses for users.

The Mechanics of the Create2 Exploit

Ethereum-ETH

According to ScamSniffer, hackers have manipulated a piece of Ethereum code, known as Create2, to bypass traditional security measures. Create2, typically used in applications like Uniswap for predicting contract addresses, has become a tool for malicious activities. By creating temporary wallet addresses, these drainers transfer funds unnoticeably after users unknowingly approve malicious signatures.

Bypassing Security Protocols

The exploitation of Create2 enables hackers to circumvent the usual security alerts that warn users of suspicious activities. This stealth approach has facilitated the unauthorized access to private keys and the subsequent draining of wallets. The signature approval process, often a security checkpoint, is now a vulnerability exploited by these attackers.

Impact and Scale of the Exploit

Research by ScamSniffer and SlowMist highlights the magnitude of this exploit: approximately $60 million stolen from about 99,000 victims in just six months. A specific group using this method amassed $3 million from 11 victims since August, showcasing the exploit’s effectiveness.

Wider Context: Rising Crypto Hacks and Exploits

This incident is part of a larger trend of cryptocurrency hacks. Recently, Poloniex exchange suffered a $114 million loss due to a hot wallet breach, and LastPass users lost $4.4 million in a single day in October. These incidents underline the escalating challenges in crypto asset security.

Conclusion

The Create2 exploit on Ethereum poses significant challenges to the security of digital assets. As hackers devise more sophisticated methods to bypass security protocols, the need for enhanced protective measures becomes increasingly vital. This incident serves as a stark reminder of the ongoing vulnerabilities within the cryptocurrency ecosystem.

Don't forget to enable notifications for our Twitter account and Telegram channel to stay informed about the latest cryptocurrency news.

BREAKING NEWS

Ethereum Sees 16,913 ETH Net Issuance in a Week: Total Supply Reaches 120.7 Million

COINOTAG News reports for April 27th that recent data...

Bitcoin Poised to Surpass All-Time High as Funding Rates Remain Negative, Says CryptoQuant Analyst

COINOTAG News, April 26th – Analyst Avocado from CryptoQuant...

Bitcoin Investor Sentiment Improves Amid Tariff Talks, But Weekend Volatility Risks Remain

The latest update from COINOTAG on April 26th highlights...

Bitcoin Faces Strong Resistance: Key Price Range of $94,125 to $99,150 Analyzed by Expert

On April 26th, COINOTAG reported that cryptocurrency analyst @ali_charts...

Understanding Mainstream Culture: Nick Tomaino on the Future of Crypto and On-Chain Games

Nick Tomaino, founder of 1confirmation, recently highlighted an essential...
spot_imgspot_imgspot_img

Related Articles

spot_imgspot_imgspot_imgspot_img

Popular Categories

spot_imgspot_imgspot_img