Wallet Drainer Targets Solana, US$4 million Lost
Wallet drainer is a term that refers to a phishing attack or fraud where cybercriminals try to steal crypto assets from a user's crypto wallet using certain methods. This is generally related to transaction approval .
Reporting from the scam detection platform , Scam Sniffers , has identified drainer attempts using phishing methods on Solana wallets since December 16, 2023.
One wallet user reported that their crypto assets were lost after approving a transaction from a pop up wallet .
The post stated that this drainer had stolen around US$290 thousand (16/12/23). However, most wallet users may not be sensitive to this warning and as of this article being written (15/1/24), further investigation from Scam Sniffers stated that losses had reached US$4 million or around Rp. 62 billion.
Two Wallets that Dominate Phishing Attacks
Two drainers have been identified, namely the Rainbow drainer and the Node drainer . Rainbow drainers use anti-simulation techniques to hide balance changes in wallets , so that victims are unaware of losing assets when signing suspicious transactions. This drainer managed to steal more than US$2.14 million from 2,205 wallets.
Image: Number of assets stolen and wallets affected by the Rainbow drainer .
The drainer node appeared in a Christmas phishing campaign and managed to steal more than US$2 million in less than two weeks. An address associated with Node drainer even converted stolen USDC into ETH via AllBridge worth US$1 million.
Image: Number of assets stolen and wallets affected Node drainer .
In the Node drainer case , the perpetrator sent a token with the ticker MEMEDROP and a detailed link to the website to claim the airdrop . This is a scam website and wallet users who connect and approve transactions will lose their crypto assets.
This situation provides a serious warning to users and developers in the Solana ecosystem to increase their security awareness.
From the user's side, prevention can be done by not carrying out transactions related to tokens that suddenly appear in the wallet, there is a big chance that the token is related to a scam .
