The governance tokens of World Liberty Financial (WLFI) are being beaten with a known Phishing wallet expouncy using the Eip-7702 update of Ethereum, says the founder of Slowmist, Yu Xian.
Ethereum’s sicking update in May introduced EIP-7702, which allows external accounts to temporarily act as intelligent contract wallets, delegate execution rights and allow batch transactions, which are destined to optimize a user’s experience.
Xian said in an X publication on Monday that the computer pirates are exploiting the update for planting prior to a direction controlled by computer pirates in victims’ wallets, then, when a deposit is made, they quickly “snatch” the tokens, which in this case is affecting the WLFI tokens.
“He found another player whose multiple WLFI addresses were stolen. Looking at the theft method, it is again the exploitation of the malicious contract 7702, with the prerequisite that is a private key leak,” Xian said.
The Token World Liberty Financial (WLFI) of Donald Trump began to quote Monday morning, with a total supply of 24.66 billion tokens.
How it works
In the period prior to the official launch, an X user reported on August 31 that a friend had his wlfi tokens drained after transferring Ether (eth) to his wallet.
In an answer, Xian said that it was clearly an example of the “Classic Phishing Eip-7702 exploit, where the private key was leaked, and the bad actor then pre-plates a intelligent delegate contract in the direction of the victim’s wallet connected to the key.
In a previous publication, Xian said that private keys are generally stolen through Phishing.
“As soon as it tries to transfer the remaining tokens, such as these WLFIs that were thrown into the security box contract, the gas entered will be transferred automatically,” he said.
Xian suggested “Cancel or replace the EIP-7702 ambushed with yours”, and transfer the tokens of the committed wallet as a possible solution.
Cryptographic users argue the robberies in the Wlfi forums
Some have been informing similar problems in WLFI forums. A publication under the Hakanemiralatlas mango said that his wallet was pirate in October last year and now worries that his WLFI tokens are at risk.
“I managed to transfer only 20% of my WLFI tokens to a new wallet, but it was a stressful race against the hacker. Even sending ETH for gas rates felt dangerous, since it could have been stolen instantly too,” they said.
“Currently, 80% of my Wlfi tokens are still trapped in the committed wallet. I am extremely worried that once they unlock, the hacker could transfer them immediately.”
Another user under the Anton handle said that many other people face a similar problem due to how the token fall was implemented. The wallet used to join the white wlfi list should be used to participate in the presale.
Related: Care with the false conference software aimed at cryptography assets, warns the founder of Slowmist
“At the moment the tokens arrive, they will be stolen by automated sweeper bots before we have the opportunity to transfer them to a safe wallet,” he said.
Anton is also asking the WLFI team to consider implementing a direct transfer option for tokens.
The scammers aimed at the launch of the Token
Numerous Wlfi scams have appeared in the previous launch and after the launch of tokens. The Bublemaps analysis firm identified several intelligent contracts similar to the “grouped clones” that mimic established cryptographic projects.
Meanwhile, the WLFI team warned that it is not communicated through a direct message on any platform, with the only official support channels by email.
“If you receive a DM that claims to be from us, it is fraudulent and should be ignored. If you receive an email, always verify that you come from one of these official domains before answering,” Wlfi’s team said.
Magazine: XRP ‘Cycle Target’ costs $ 20, demand for bitcoin strategy dismissed: Hodler’s Digest, August 24 – 30.
