SlowMist Warns of EIP-7702 Exploit Affecting WLFI Governance Tokens
A well-known phishing wallet hack is targeting the governance tokenholders of World Liberty Financial (WLFI). Yu Xian, the founder of SlowMist, claims that the attack takes use of Ethereum’s EIP-7702 update. Hackers are using the update to pre-plant a hacker-controlled address in victim wallets, according to Xian’s Monday X post. The attackers swiftly seize the tokens after a deposit is made; this is a strategy that WLFI tokenholders are currently facing.
Encountered another player whose multiple addresses’ WLFI were all stolen. Looking at the theft method, it’s again the exploitation of the 7702 delegate malicious contract, with the prerequisite being private key leakage,
Xian
WLFI Users Alerted as EIP-7702 Phishing Hack Drains Wallets
EIP-7702 was launched in May with Ethereum’s Pectra upgrade. With this upgrade, external accounts can execute batch transactions, assign execution permissions, and temporarily function as smart contract wallets. Simplifying the user experience is the goal of all of these.
Prior to the formal launch, on August 31, an X user reported that after transferring Ether into their wallet, a friend’s WLFI tokens were depleted. According to Xian, it was an obvious instance of the well-known EIP-7702 phishing attack, in which the private key was exposed. Xian stated in a prior post that phishing is typically used to get private keys.
As soon as you try to transfer away the remaining tokens in it, such as these WLFI that were thrown into the Lockbox contract, the gas you input will be automatically transferred away,
Xian
Investors Report WLFI Tokens Stolen Immediately Upon Arrival
Similar problems have been reported by a few people in the WLFI forums. According to a message made under the handle Hakanemiratlas, his wallet was compromised in October of last year, and he is now concerned that his WLFI coins may be in danger.
I managed to transfer only 20% of my WLFI tokens to a new wallet, but it was a stressful race against the hacker. Even sending ETH for gas fees felt dangerous, since it could have been stolen instantly as well. Currently, 80% of my WLFI tokens are still stuck in the compromised wallet. I am extremely worried that once they unlock, the hacker might immediately transfer them away.
Hakanemiratlas
An additional user beneath the handle according to Anton, the way the token drop was executed is causing a lot of other people to experience a similar problem. To take part in the presale, you must use the wallet you used to add yourself to the WLFI whitelist. Additionally, Anton is asking the WLFI Team to think about allowing tokens to be transferred directly.
The instant the tokens arrive, they will be stolen by automated sweeper bots before we have a chance to move them to a secure wallet,
Anton
For more up-to-date crypto news, you can follow Crypto Data Space.
