News View Non-AMP

Ethereum’s Pectra Attack Claims First Victim, $150K Drained in EIP-7702 Phishing

Published by
Nidhi Kolhapur

Ethereum recently got a major boost with the Pectra upgrade, following the success of ‘The Merge’. One key feature, EIP-7702, promised to make wallets easier to use. But it is now facing backlash as it is being attacked by malicious actors. 

EIP-7702, proposed by Vitalik Buterin, was designed to improve Ethereum wallets by allowing them to act like smart contracts briefly. This meant easier transactions, gas fee sponsorships, and better features like spending limits and passkey authorization. But in reality, it has opened the door for scams. 

Malicious Script “CrimeEnjoyor” Exposed

Wintermute, a blockchain security firm, found that over 80% of wallet delegations are linked to one malicious script called “CrimeEnjoyor.” It hijacks wallets and instantly drains their funds to attacker-controlled addresses, all while pretending to offer a better user experience.

“Our Research team found that over 97% of all EIP-7702 delegations were authorized to multiple contracts using the same exact code. These are sweepers, used to automatically drain incoming ETH from compromised addresses,Wintermute, shared in a recent X post.

“The CrimeEnjoyor contract is short, simple, and widely reused. This one copy-pasted bytecode now accounts for the majority of all EIP-7702 delegations. It’s funny, bleak, and fascinating at the same time.”

Scam Sniffer reported that one wallet lost nearly $150K in a phishing scam tied to Inferno Drainer. As Ethereum adds new features, scams like this are rising, which often catch users off guard.

The Real Weakness: Private Key Safety

Experts note that the EIP-7702 isn’t the real problem, but weak key security is. Stolen or leaked private keys remain the biggest risk. Researchers warn that while 7702 makes transactions smoother, it also makes wallet-draining attacks cheaper and faster. 

Firms like SlowMist have urged the wallet providers to improve security features and make contact details more visible. Their message is that convenience should not compromise protection.

Bad Actors Didn’t Profit Much

Despite the massive wallet-draining attempts, attackers have not made a lot of profit. They spent about 2.88 ETH to target nearly 79,000 wallets. One address alone handled over 52,000 of these authorizations.

The stolen ETH is traceable, but so far, the main wallets tied to these scams have not received any funds, which means that the attacks may not be paying off yet.

Nidhi Kolhapur

Nidhi is a Certified Digital Marketing Executive and Passionate crypto Journalist covering the world of alternative currencies. She shares the latest and trending news on Cryptocurrency and Blockchain.

Recent Posts

What XRP Users Are Talking About This Week: Latest Rumors, Predictions & Debates

The XRP community is as fiery as ever, with price debates, predictions, and arguments lighting…

June 24, 2025

Nasdaq-Listed Nano Labs Plans to Buy $1B in BNB — Aiming for 10% Supply Takeover!

China-based Web3 firm Nano Labs is making a daring move by targeting Binance Coin (BNB).…

June 24, 2025

Bitcoin Price Holds Strong at $105K: Short Squeeze Ahead?

Bitcoin’s price held $105k in support on Tuesday, with reduced geopolitical tensions in the Middle…

June 24, 2025

Can Shiba Inu (SHIB) Price Hit $0.00003 Level!

The Shiba Inu community has been watching SHIB’s price move up and down recently, mainly…

June 24, 2025

Polymarket Nears $200M Funding Round, Valuation to Hit $1B

Decentralized prediction platform Polymarket is reportedly on the verge of closing a $200 million funding…

June 24, 2025

Can This Cheap Crypto Token Hit $1 Before Cardano (ADA)? $11.1M Raised Quickly Has Holders Excited

Mutuum Finance (MUTM) is igniting fervor in the crypto market, surging through Phase 5 of…

June 24, 2025