Investor Loses $3M in Crypto Phishing Scam After Signing Malicious Transaction

A cryptocurrency investor has fallen victim to a phishing scam, losing $3.05 million in Tether (USDT) after unknowingly signing a malicious blockchain transaction.

Key Takeaways:

• A crypto investor lost $3.05 million in USDT after signing a phishing transaction.
• Many platforms obscure wallet address middles, making it easier for scammers to exploit users.
• Phishing remains the most damaging threat in crypto, with over $1 billion in losses in 2024.

The loss, flagged by blockchain analytics platform Lookonchain on Wednesday, underscores the rising threat of phishing attacks targeting digital asset holders.

The attacker exploited a common habit among crypto users: validating only the first and last few characters of a wallet address while ignoring the middle.

Many platforms obscure middle characters for design reasons, making it easier for scammers to trick users into approving fraudulent transactions. In this case, the investor’s oversight cost them millions.

Lookonchain issued a warning following the incident, urging users to remain vigilant.

“Stay alert, stay safe. One wrong click can drain your wallet. Never sign a transaction you don’t fully understand,” Lookonchain wrote.

Someone fell victim to a phishing attack, signed a malicious transfer, and lost 3.05M $USDT!

Stay alert, stay safe. One wrong click can drain your wallet.

Never sign a transaction you don’t fully understand.

Double-check the URL, double-check all signature requests

Verify… pic.twitter.com/39YYe1LAoz

Phishing scams in the crypto space typically rely on social engineering tactics rather than technical exploits.

Fraudsters often share convincing links that lead users to grant access or approve malicious smart contracts.

These scams are becoming increasingly sophisticated and personal, focusing more on human behavior than on breaking through hardened protocols.

Just days earlier, another user reportedly lost over $900,000 due to a similar exploit, signing a malicious approval transaction more than a year prior.

In May, a notorious “wallet poisoning” scam made headlines after draining $71 million.

In a rare twist, the attacker returned the funds after blockchain investigators traced a possible Hong Kong IP address.

After we published an analysis article about the 1155 WBTC phishing incident and a profile of the hacker, it seems like there is a potential turning point in the situation.

3 hours ago, the hacker requested to contact the victim. https://t.co/ZspG0F7bqW pic.twitter.com/4ZUAGttP5c

According to CertiK’s 2024 Web3 security report, phishing scams were the most damaging attack vector in the crypto ecosystem, accounting for over $1 billion in losses across 296 recorded incidents.

At least three of those surpassed the $100 million mark.

Last week, blockchain analytics firm Arkham Intelligence reported that 127,426 BTC, valued at around $3.5 billion at the time and nearly $14.5 billion today, was stolen from Chinese mining pool LuBian in December 2020.

LuBian rose quickly in early 2020, becoming the sixth-largest mining pool on the Bitcoin network by mid-year, before being hacked on December 28, 2020, for over 90% of their BTC.

Crypto investors lost over $2.2 billion to hacks, scams, and breaches in the first half of 2025, driven largely by wallet compromises and phishing attacks, according to CertiK’s latest security report.

Wallet breaches alone caused $1.7 billion in losses across just 34 incidents, while phishing scams accounted for over $410 million across 132 attacks.

Two major incidents, including Bybit’s $1.5 billion hack in February and Cetus Protocol’s $225 million exploit in May, skewed the year’s losses upward, together accounting for nearly $1.78 billion.

Without these, losses align more closely with previous years at around $690 million.

Ethereum remained the primary target, suffering over $1.6 billion in losses across 175 events.

The post Investor Loses $3M in Crypto Phishing Scam After Signing Malicious Transaction appeared first on Cryptonews.