908 thousand US dollars were stolen, 458 days after approval: “Safety Wallet!” star-news.press/wp

Main meals

A user lost nearly a million dollars in USDC due to a fraud with a harmful contract that occurred 458 days ago. Experts warn that this late exploitation trend has become a strategy for encryption thieves.

A encryption user lost 908,551 dollars in the United States (USDC) after he was a victim of a wallet fraud that took advantage of the approval of the malicious contract signed more than 15 months ago.

Source: x

According to the Donchin data, the victim consent A harmful smart contract on the thirtieth of April 2024, probably through the fake air air or the disguised cruis hunting location as a legitimate platform.

After that, the deception waited for patience for approximately 16 months before the implementation of the final strike on the second of August 2025, when the victim’s portfolio of approximately $ 1 million drained USDC.

How can the old wallet approvals transform

The attack was again tracked to the ERC-20 approval that was silently gave access to a “0x67e5ae” deceptive portfolio linked entitled Rainer.ETH Pink.

The contract allowed the distinctive symbol transfers without any additional user confirmation.

According to Scam Snifer, who put the accident on the X, the theft occurred 458 days after the victim agreed to the harmful deal.

Shortly later, Scam Snifer go to X and maleand

“Review and cancel old approvals regularly – your wallet safety is important!”

In this case, the pre -transverse wallet did not show a simple, low -value activity, which mostly helped it flying under the radar.

How did this start?

Things took a sharp turn on the second of July.

The victim moved 762397 USD from Metamask to a new portfolio (0x6c0b6) at 8:41 pm UTC.

Just ten minutes later, I topped it for another $ 146,154 from the KAKEN account. These movements were generally on the chain and it is possible that the deception would be alerted.

Instead of acting immediately, the attacker waited another month, it is likely that no additional opposite or deposits will not confirm. Then it was struck at 4:57 am UTC on August 2.

The stolen money was sent to a address bearing a mark on Fake_phishing322880 and was marked by Scam Snifer as harmful.

Frauds are more intelligent

This indicates that the increase in encryption fraud grows more sophisticated on this day, as bad actors take advantage of both technology and confidence.

From Deepfakes created from artificial intelligence from Ripple executives to YouTube channels that are promoted by fake XRP gifts, fraudsters benefit from realism to deceive reassuring users.

At the same time, the emergence of the huge accreditation leakage of 16 billion people of risk increased through platforms.

In one disturbing case, targeted Hunting I used a mixture of urgency, plagiarism, and manipulating platforms to deceive even veteran cybersecurity expert.

Even experienced users have fallen prey.

Source: Galaxy

Even cyberspace security analyst Christopher Rosa fell due to a fraud in hunting using deceptive email messages, fake calls from Coinbase, and coordinated social engineering.

Ready -made meals are explicit but vital: old approvals do not end, and the attackers do not forget.