An investor just fell victim to a phishing attack, losing over $101,000 in multiple cryptocurrencies across several blockchains.

According to the Blockchain security firm PeckShield, the address lost over 237.8 billion OSAK worth $66,682 from defi project Osaka protocol, and 287 billion CAW tokens valued at $26,490. 

#PeckShieldAlert #Phishing An address (0xA71d…4541) fell victim to a phishing attack by #Fake_Phishing187019, resulting in a loss of ~$101K worth of cryptos, including 237.8K $OSAK, 287.1K $CAW, 213 $HIGH, & 426 $USDT on #Ethereum, 3K $kUSDC on #BNBChain, and ~0.5 $PENDLE-LPT &… pic.twitter.com/hGMDLvcuxw

— PeckShieldAlert (@PeckShieldAlert) May 20, 2024

In addition, 213 HIGH worth $938 and 426 USDT were stolen on the Ethereum network. Other assets taken include 3,000 USDC on BNB Chain, including 0.5 PENDLE and 0.1 WBTC on Arbitrum. At the time of reporting, the address still holds $7,000 in crypto assets.

You might also like: Binance executive denied bail in Nigerian money laundering case

The exploiter’s address still retains the stolen assets at last check, boasting a balance of roughly $220,000 across several chains. The attackers exploited the victim by deploying a multi-call function, which allows multiple smart contract functions to be executed in a single transaction. 

Hackers exploit this by tricking users into signing transactions that appear legitimate but actually include malicious multi-call functions. The code allows the malicious actor to transfer funds or interact with contracts without the user’s intended consent, leading to the loss of assets.

This year, the crypto space has experienced several phishing attacks, albeit with a reduced frequency. Recently, an unidentified market participant fell victim to such a scam, resulting in a substantial loss of over $674,000 in USDC, highlighting the ongoing threat of these fraudulent schemes.

Moreover, this incident mirrors similar phishing attacks reported earlier this month, where a victim lost $145,000 worth of Bored Ape Yacht Club (BAYC) NFTs. In that case, three BAYC NFTs were stolen.

In another incident reported in April 2024, a trader lost over $180,000 in USDC and Andy tokens. The attackers employed a similar multi-call tactic, combining multiple function calls into a single transaction, leading to outflows from the victim’s address to several wallets controlled by the hackers.

Read more: Top cryptocurrencies to watch this week: SOL, BONK, FTM