How a single copy-paste mistake cost a user $50M in USDt

cointelegraphОпубликовано 2025-12-20Обновлено 2025-12-20

Введение

A user lost nearly $50 million in USDt in an address poisoning scam after mistakenly copying a malicious look-alike address from their transaction history. The scam works by attackers sending small transactions to a victim's wallet using addresses that closely resemble those of the victim's trusted contacts. In this case, the victim first sent a small test transaction to the correct address but then copied a fraudulent, similar-looking address for the full $50 million transfer. Onchain investigators noted the addresses shared the same first three and last four characters, a subtle similarity that can deceive even experienced users. The stolen funds were subsequently swapped for Ether and partially laundered through Tornado Cash. This incident highlights how such attacks exploit human error rather than technical vulnerabilities. The loss occurred amid a broader surge in crypto hacks, which reached $3.4 billion in losses in 2025.

A single transaction error led to one of the largest onchain losses seen this year, after a user mistakenly sent nearly $50 million in USDt to a scam address in a classic address poisoning attack.

According to onchain investigator Web3 Antivirus, the victim lost 49,999,950 USDt (USDT) after copying a malicious wallet address from their transaction history.

Address poisoning scams rely on look-alike wallet addresses being inserted into a victim’s transaction history via small transfers. When victims later copy an address from their transaction history, they may unknowingly select the scammer’s lookalike address instead of the intended recipient.

Onchain data shows the victim initially sent a small test transaction to the correct address. Minutes later, however, the full $50 million transfer was sent to the poisoned address.

User falls victim to address poisoning scam. Source: Web3 Antivirus

Related: Attacker takes over multisig minutes after creation, drains up to $40M slowly

Subtle address similarity enough to fool experienced users

Security researcher Cos, founder of SlowMist, noted the similarity between the addresses was subtle but enough to deceive even experienced users. “You can see the first 3 characters and last 4 characters are the same,” he wrote.

The victim’s wallet had been active for roughly two years and was primarily used for USDt transfers, according to onchain analysis. Shortly before the loss, the funds were withdrawn from Binance, suggesting the wallet was being actively managed at the time of the incident.

“This is the brutal reality of address poisoning, an attack that doesn’t rely on breaking systems, but on exploiting human habits,” another onchain analyst wrote.

The attacker has since swapped the stolen USDt for Ether (ETH), splitting it into multiple wallets, and partially moved it into Tornado Cash.

Related: Binance denies reports of delayed action over funds linked to Upbit hack

Crypto hacks hit $3.4 billion in 2025

As Cointelegraph reported, crypto-related hacks resulted in $3.4 billion in losses in 2025, marking the highest annual total since 2022. The surge was largely driven by a handful of massive breaches targeting major crypto entities rather than a broad rise in average attack size.

Just three incidents accounted for 69% of total losses this year, led by the $1.4 billion hack of crypto exchange Bybit, which alone made up nearly half of all stolen funds.

Magazine: 2026 is the year of pragmatic privacy in crypto — Canton, Zcash and more

Связанные с этим вопросы

QWhat is an address poisoning scam and how did it lead to a $50 million loss?

AAn address poisoning scam is a type of attack where a scammer sends a small transaction to a victim's wallet using a look-alike address. The victim, when later copying an address from their transaction history, may accidentally select the scammer's fraudulent address instead of the legitimate one. In this case, the user mistakenly sent $50 million in USDt to the poisoned address.

QWhat detail did the security researcher from SlowMist point out about the fraudulent address?

AThe security researcher, Cos from SlowMist, noted that the similarity between the legitimate and the fraudulent address was very subtle. He pointed out that the first 3 characters and the last 4 characters of the two addresses were identical, which was enough to deceive even experienced users.

QWhat did the attacker do with the stolen USDt funds after the scam was successful?

AAfter successfully stealing the USDt, the attacker swapped the funds for Ether (ETH). They then split the ETH into multiple wallets and partially moved it into the privacy-focused mixing service, Tornado Cash.

QHow much was lost to crypto hacks in 2025 according to the article, and what was a major contributing factor?

AAccording to the article, crypto-related hacks resulted in $3.4 billion in losses in 2025. The surge was largely driven by a handful of massive breaches targeting major crypto entities, with just three incidents accounting for 69% of the total losses.

QWhat preliminary step did the victim take before sending the full $50 million, and why was it ineffective in preventing the loss?

AThe victim initially sent a small test transaction to the correct address. However, this was ineffective because the scammer's look-alike address was already in their transaction history from a previous, small 'poisoning' transfer. When the victim went to copy the address for the large transfer, they mistakenly selected the fraudulent one.

Похожее

Cardano Leadership Structure Comes Under Scrutiny, Clouding Its Future – See Why

Cardano is recognized as one of the most decentralized blockchains, yet recent criticism highlights its lack of clear leadership. Analyst Cardano Yoda argues that despite the introduction of on-chain governance—which involves DReps (governance decision-makers) and Pentad (leadership and execution)—the network remains centralized in practice. While DReps control treasury spending, they lack coordination and strategic direction, relying instead on founding entities like IOG, the Cardano Foundation, and EMURGO. This creates fragmented leadership and accountability issues. Yoda suggests that DReps should evolve into a more coordinated body, possibly through a board or DAOs, to define strategy and improve governance effectiveness. Enhanced cooperation between DReps, founding entities, and Intersect is essential for Cardano’s future leadership clarity and operational unity.

bitcoinist36 мин. назад

Cardano Leadership Structure Comes Under Scrutiny, Clouding Its Future – See Why

bitcoinist36 мин. назад

Bitcoin Must Do This To Continue The Rally, Or It Will Be Over

A crypto analyst known as "Swarmik" has identified 17 key price levels where Bitcoin (BTC) could find support if selling pressure increases. The analysis suggests that BTC's overall outlook remains bullish, and any successful bounce from these levels could drive it back to all-time highs or beyond. The first critical support is at $70,931, followed by levels such as $68,931 (an "Imbalance Zone"), $66,638 (a "Reversal Line"), and $64,491 (a "Psychological Level"). Further down, Fibonacci retracements and other technical zones like "Fair Value Gap" and "Order Block" are highlighted. If the decline continues, lower supports include $51,612 ("Demand Zone") and $49,466 ("Supply Zone"). The analyst warns that a drop below $34,732 would invalidate the bullish structure, potentially ending the rally.

bitcoinist2 ч. назад

Bitcoin Must Do This To Continue The Rally, Or It Will Be Over

bitcoinist2 ч. назад

Ethereum Gains Institutional Spotlight – Here’s What The CEO Of Etherealize Has To Say

Ethereum is gaining significant institutional interest, with Etherealize CEO Vivek Raman positioning it alongside Bitcoin as a core institutional asset. Raman highlights ETH's proof-of-stake model, yield potential, and role in tokenized assets and stablecoins as key drivers for its growth. He emphasizes Ethereum's neutrality and trustless nature, making it ideal for global financial infrastructure. Long-term price projections from analysts like Julien CryptoBoost suggest ETH could reach between $12,000 and $38,000 by 2033, supported by growing stablecoin volumes, upcoming upgrades, and institutional adoption. Despite current bearish trends, Ethereum's fundamentals and fee generation indicate strong future potential, with some experts calling it undervalued.

bitcoinist3 ч. назад

Ethereum Gains Institutional Spotlight – Here’s What The CEO Of Etherealize Has To Say

bitcoinist3 ч. назад

Cardano Founder Warns XRP Investors, Is Ripple Doing Something Wrong?

Cardano founder Charles Hoskinson has warned XRP investors, claiming Ripple is dumping its XRP holdings to fund business acquisitions without benefiting token holders. He alleges Ripple controls 80% of the supply and uses sales to build Web 2.5 companies, with no buybacks or value distribution to XRP investors. Hoskinson also notes the lack of staking or DeFi mechanisms on XRPL reduces organic demand. Despite Ripple CEO Brad Garlinghouse calling XRP central to their vision, Hoskinson compares Ripple to Tether in accruing value solely for itself. XRP price fell nearly 2% to around $1.40.

bitcoinist5 ч. назад

Cardano Founder Warns XRP Investors, Is Ripple Doing Something Wrong?

bitcoinist5 ч. назад

Strategy Surpasses 800K BTC as $2.5B Bitcoin Buying Spree Continues

MicroStrategy, the world's largest public Bitcoin holder, has increased its total holdings to over 815,000 BTC after purchasing an additional 34,164 BTC for approximately $2.54 billion. This acquisition, executed at an average price of $74,395 per bitcoin, is the company's third-largest purchase by coin count. The buying spree, which occurred between April 13 and 19, was primarily funded through the sale of the company's STRC perpetual preferred security. The firm's average purchase price for its entire holdings now stands at $75,527 per bitcoin.

TheNewsCrypto5 ч. назад

Strategy Surpasses 800K BTC as $2.5B Bitcoin Buying Spree Continues

TheNewsCrypto5 ч. назад

Торговля

Спот
Фьючерсы

Популярные статьи

Как купить EDGE

Добро пожаловать на HTX.com! Мы сделали приобретение edgeX (EDGE) простым и удобным. Следуйте нашему пошаговому руководству и отправляйтесь в свое крипто-путешествие.Шаг 1: Создайте аккаунт на HTXИспользуйте свой адрес электронной почты или номер телефона, чтобы зарегистрироваться и бесплатно создать аккаунт на HTX. Пройдите удобную регистрацию и откройте для себя весь функционал.Создать аккаунтШаг 2: Перейдите в Купить криптовалюту и выберите свой способ оплатыКредитная/Дебетовая Карта: Используйте свою карту Visa или Mastercard для мгновенной покупки edgeX (EDGE).Баланс: Используйте средства с баланса вашего аккаунта HTX для простой торговли.Третьи Лица: Мы добавили популярные способы оплаты, такие как Google Pay и Apple Pay, для повышения удобства.P2P: Торгуйте напрямую с другими пользователями на HTX.Внебиржевая Торговля (OTC): Мы предлагаем индивидуальные услуги и конкурентоспособные обменные курсы для трейдеров.Шаг 3: Хранение edgeX (EDGE)После приобретения вами edgeX (EDGE) храните их в своем аккаунте на HTX. В качестве альтернативы вы можете отправить их куда-либо с помощью перевода в блокчейне или использовать для торговли с другими криптовалютами.Шаг 4: Торговля edgeX (EDGE)С легкостью торгуйте edgeX (EDGE) на спотовом рынке HTX. Просто зайдите в свой аккаунт, выберите торговую пару, совершайте сделки и следите за ними в режиме реального времени. Мы предлагаем удобный интерфейс как для начинающих, так и для опытных трейдеров.

297 просмотров всегоОпубликовано 2026.03.31Обновлено 2026.03.31

Как купить EDGE

Что такое фьючерсы на акции США?

Фьючерсы на акции США представляют собой токенизированные бессрочные фьючерсы на американские акции, торгуемые на криптовалютных биржах (например, HTX).

1.1k просмотров всегоОпубликовано 2026.04.08Обновлено 2026.04.08

Что такое фьючерсы на акции США?

Обсуждения

Добро пожаловать в Сообщество HTX. Здесь вы сможете быть в курсе последних новостей о развитии платформы и получить доступ к профессиональной аналитической информации о рынке. Мнения пользователей о цене на A (A) представлены ниже.

活动图片

Топ вопросы

Популярные категорииright-arrow

Популярные тегиright-arrow