2025-12-20 15:22:09

We've all been through this—hurriedly sending a message, copying and pasting, only to accidentally send a message to the boss instead of your wife. The embarrassment lasts all night, and at worst, you'll treat everyone to a meal tomorrow to make up for it.

But this morning, a certain whale on the blockchain wasn't so lucky. A slip of the finger caused 50 million USD to go down the drain.

This isn't some fancy smart contract bug, nor is it a state-sponsored hacking team. The culprit is a common flaw we all share—laziness.

Here's what happened. This guy withdrew 50 million USDT from a top-tier exchange. To be cautious, he first transferred 50 bucks worth of USDT for testing—sounds like a careful person, right?

But the trouble was in the final moment.

The black hand that had been watching him took advantage of his testing phase and precisely created a fake address next to his wallet address. The hacker's address looks exactly like the real one, with only a few digits changed in the middle. It's impossible to tell the difference with the naked eye.

At the critical moment of transferring the 50 million, this guy probably thought the long string of characters was too annoying, so he took a shortcut and clicked "Copy Last Transaction" in the transaction record. He never expected that the string of characters had been secretly altered by the hacker.

He hit Enter.

And just like that, 50 million USDT, like a kite cut loose, flew straight into the hacker’s trap. The hacker responded quickly—immediately swapped to DAI to avoid freezing, then swept the entire 1,600 ETH into a mixer for laundering.

From withdrawal to loss, the whole process was like a carefully choreographed magic show. The only difference is, this time, no one was applauding.

DAI0,11%

ETH0,96%

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

21 Likes

Reward
21
4
Repost
Share

Comment

0/400

pvt_key_collector

· 2025-12-22 00:26

It's another case of copy and paste causing trouble, this time it's really Rekt.

View OriginalReply0

NFTArchaeologist

· 2025-12-20 15:52

Wow, this is the legendary address pollution attack. So detailed—one press of Enter and 50 million is gone... This guy is really lazy to a new level. Every time I transfer a large amount, I compare the address character by character. It's tiring, but it's definitely better than this kind of social death.

View OriginalReply0

rugdoc.eth

· 2025-12-20 15:47

Oh no, it's that same old "swap and switch" trick. Honestly, it's just laziness. This guy deserves it. Not verifying before copying and pasting, and $50 million is gone. It really hurts to watch. I've learned my lesson about copying addresses. Now I have to check each character carefully, or I'll be constantly worried. Hacker tricks are really ruthless, preying on people's laziness. This works better than any advanced smart contract vulnerability. Testing with a withdrawal of $50 is correct, but the subsequent steps were all wasted. That's just ridiculous. Mixer services can be cleaned out easily. Sometimes I feel like this ecosystem is a bit magical...

View OriginalReply0

notSatoshi1971

· 2025-12-20 15:46

It's just copy and paste, and 50 million is gone... How lazy can you be haha That's why I always manually verify the address. It's a hassle, but at least I can sleep peacefully. Hackers are really clever, just waiting for you to take the easy way out. Seeing that 50 million go into the mixer, I wonder what this guy's feeling right now.

View OriginalReply0