Summary
- A digital asset investor reportedly sent about $50 million worth of USDT to the wrong address due to address spoofing.
- Address spoofing is described as a method that inserts a malicious wallet address similar to the original into a transaction record to confuse investors.
- The stolen USDT was exchanged for Ethereum and then laundered through Tornado Cash.
A digital asset investor mistakenly copied a malicious wallet address from their transaction history and sent USDT worth $50 million to the wrong address.
On the 20th (Korean time), digital asset media outlet Cointelegraph reported that an anonymous investor copied a malicious address from their transaction history and sent 49,999,995 USDT tokens to the wrong address.
The victim suffered an address spoofing incident. Address spoofing is a technique that inserts an address similar to the original into a digital asset transaction record.
According to data, the victim first made a small test transfer to the correct address, but a few minutes later fell for spoofing during a real transfer of about $50 million. Cos, founder of SlowMist, said of the incident, "The first 3 characters and the last 4 characters of the address are the same," and explained, "The similarity of the addresses is subtle, so even experienced users can be easily deceived."
The spoofing attacker exchanged the stolen USDT for Ethereum (ETH) and then laundered it through Tornado Cash.
Uk Jin
wook9629@bloomingbit.ioH3LLO, World! I am Uk Jin.
