🔸Unprofitable Theft Attempts on Ethereum for Attackers.
According to the cryptocurrency market firm Wintermute, malicious contracts on Ethereum, dubbed "CrimeEnjoyors", are attempting to drain wallets with weak security, but their efforts have not been profitable.
This issue originates from EIP-7702, part of the recent "Pectra" update of Ethereum. This proposal allows regular Ethereum addresses to temporarily function as smart contracts, facilitating transactions. However, it also opens the door for malicious contracts to attempt to drain funds.
Wintermute has discovered that more than 97% of the delegations through EIP-7702 involve copied and pasted contracts designed to scan and automatically steal from vulnerable wallets. Despite this, attackers have spent more than they have stolen, investing approximately 2.88 ETH to authorize 79,000 addresses. The stolen funds have not reached the attackers' target addresses, suggesting that these large-scale theft attempts are not being successful.
