A cryptocurrency investor lost over $1.28 million on October 14 as a result of a phishing attack, in which his cryptocurrency was stolen via a malicious transaction.
According to digital security firm PeckShieldAlert, the stolen cryptocurrencies included 108 billion PEPE, 73.8 million APU, and 165,000 MSTR.
The investor fell victim to an attack known as consent phishing, a tactic that allows attackers to take control of the victim's wallet and drain the cryptocurrency stored there.
In this incident, the victim's wallet was emptied in six quick transactions, and the stolen coins were distributed across multiple addresses operated by the attackers.
One of these addresses, “Fake_Phishing442846,” was involved in another scam two weeks ago that resulted in the theft of $32 million worth of “spWETH” tokens.
The attacks were carried out using a scam tool called “Inferno Drainer,” a phishing platform that supports multiple blockchains and allows criminals to create malicious websites and applications to trick users into signing permissions that grant control of digital wallets.
This tool has stolen over $237 million from over 200,000 victims since 2021.
Phishing is one of the biggest risks in the cryptocurrency sector, with consent phishing attacks alone causing losses of over $2.7 billion since 2021.
