EIP7702

BlockBeats ke mutabiq, blockchain security company Wintermute ne Ethereum ke naye upgrade "Pectra" ke aik feature EIP-7702 ke ghalat istemal ke bare mein warning di hai. Ye feature asal mein user experience ko behtar banane ke liye banaya gaya tha, lekin hackers is ka misuse kar rahe hain.

Wintermute ne bataya ke EIP-7702 ka ziada tar use (80% se bhi zyada) automatic attacks ke liye ho raha hai. Scam Sniffer naam ki ek aur security firm ne recently aik phishing attack detect kiya jisme aik user ka takreeban $150,000 ka nuqsan hua. Is attack mein hacker ne aik contract banaya jiska naam ‘CrimeEnjoyor’ tha, jo automatically un wallets ko khaali kar deta hai jinke private keys leak ho chuki hoti hain.

EIP-7702, jo Ethereum ke founder Vitalik Buterin ne propose kiya tha, ka maqsad ye tha ke wallets ko temporarily smart contract jese features mil jayein. Iska matlab tha ke users aik waqt mein multiple transactions kar saken, gas fee kisi aur se pay karwa saken, biometric ya social verification istemal kar saken, aur har transaction par limit laga saken.

Lekin ab Wintermute ne apne Dune dashboard pe dikhaya ke zyadatar authorizations (permissions) isi feature ke zariye un contracts ko ja rahe hain jo malicious (nuksan pohchane wale) hain. Security expert Taylor Monahan ne bhi kaha ke EIP-7702 ne ab addresses ko khaali karna asaan aur sasta bana diya hai.

Wintermute ne is baat par hairani ka izhar kiya ke aik hi jese (copy paste) codes ka ziada tar authorizations mein istemal ho raha hai – jo is feature ka misuse dikhata hai.

BlockBeats ki pehle ki report ke mutabiq, SlowMist ke founder Yu Jian ne bhi kaha ke is naye mechanism ka sab se ziada faida coin churaane wale log utha rahe hain, phishing attackers nahi. EIP-7702 ka use un wallets se paise nikalne ke liye ho raha hai jinke private keys ya mnemonic phrases leak ho chuke hote hain. Ab tak 97% se zyada authorizations isi tarah ke coin-stealing contracts ko diye ja chuke hain.

Nateeja:

EIP-7702 ka maksad user experience ko improve karna tha, lekin ab ye hackers ke haath mein aik naya tool ban gaya hai. Isliye crypto users ko zyada ehtiyaat aur security steps lena zaroori hai.
#EIP7702 #Ethereum #article

Listen, my friend, there's a story that happened around Ethereum — you know, the very blockchain system that runs on a bunch of smart contracts and NFTs. They recently rolled out an update called Pectra, and it included one cool, seemingly cool feature — EIP-7702. This improvement allows a regular wallet to temporarily behave like a smart contract. In theory, it should have made life much easier.: For example, you can combine several actions into one transaction, pay the commission in another way, or set spending limits — isn't that convenient?
There's just one problem: hackers have started actively using it.
According to the cryptotrading company Wintermute, more than 80% of all EIP-7702 delegation leads to copies of the same malicious contract. They called him "CrimeEnjoyer" — he simply and effectively cleans wallets with leaked keys, and all the contents go to the hacker's address. And there are plenty of such copies of the contract.
Another company, Scam Sniffer, found a case where a person lost almost $150,000 through a batch transaction related to the Inferno Drainer service — this is such a fraudulent "custom-made" tool. And SlowMist, which deals with blockchain security, urges wallet developers to be more careful and show the user where and why he is delegating authority.
Now, attention: the problem is not so much in the EIP-7702 itself. According to security expert Taylor Monaghan, the main risk is the leakage of private keys. That is, if someone gets your private key, that's it, your funds are at risk. And the new feature just makes attacks more effective.
So, it turns out that Ethereum seems to make technology more accessible, but at the same time it substitutes its own users. The functions are becoming more powerful, and people's protection remains weak.
Well, I have a question for you: do you think it's worth updating wallets and trying new chips at all, if there is such a lottery with security?
$ETH #ETH #Ethereum #CryptoNewss #EIP7702 #pectra

The Ethereum$ETH
network is gearing up for a transformative update with the Pectra Upgrade, scheduled for May 7, 2025. This update introduces several game-changing features, with a key highlight being the integration of EIP-7702.

🛠️ What’s New in the Pectra Upgrade?
🔄 EIP-7702: A new standard to enhance account abstraction.

🧠 Improved Validator UX: Aimed at simplifying the experience for Ethereum validators.

💠 Blob Count Doubled: Doubling the blob count increases data availability and supports scaling via rollups.

🧪 Zero Active Bugs: Developers report a clean slate in final testing phases, indicating high readiness for deployment.

⚡ AI Analysis:
Ethereum’s historical upgrade patterns show strong correlation with price optimism. The focus on zero active bugs and significant network improvements suggests a potential boost in investor confidence, possibly leading to a positive price breakout post-upgrade.
#Ethereum #ETH #PectraUpgrade #EIP7702 #BlockchainTechnology