Developers behind Pink Drainer, a notorious wallet drainer service implicated in the theft of over $75 million in assets, have decided to wind down their operations.
“We have reached our goal and now, according to plan, it’s time for us to retire,” the devs claimed in a Telegram announcement, first reported by on-chain detective ZachXBT.
The developers added, “After this message’s publication, we will begin winding down all of our infrastructure. All stored information will be wiped and securely destroyed.”
Pink Drainer is a software kit that cybercriminals employ to steal cryptocurrency assets by exploiting technological flaws that rely primarily on social engineering techniques and phishing URLs. Such scams use malicious phishing sites to deceive users into signing transactions that deplete their wallets of cryptocurrencies and NFTs.
Pink Drainer was part of a larger network of phishing-as-a-service platforms, which also included Monkey Drainer and Inferno Drainer. The developers of these services charge fees and collect a percentage of the stolen assets as payment.
You might also like: Angel Drainer targets restaking platforms with new attack vector, Blokcaid warns
Pink Drainer has been linked to the theft of $85 million in crypto from more than 21,000 victims in the last year, according to ScamSniffer.
Pink Drainer hackers are thought to be responsible for a number of high-profile attacks across multiple platforms. We are discussing incidents related to the Evomos, Pika Protocol, and Orbiter Finance projects. The group was also implicated in a fraud in which attackers posed as crypto journalists.
In total, hackers stole $2 billion in cryptocurrencies in 2023. One of the largest cryptocurrency thefts of the year was the compromise of the Euler Finance platform. During the incident, the hackers stole almost $200 million. There were also attacks on BonqDAO, the Poloniex crypto exchange, and the Atomic Wallet crypto wallet, each resulting in more than $100 million in damage.
Read more: Etherscan users targeted in major phishing campaign via on-site ads