User Loses $1.22 Million in USDC and aPlaUSDT0 to Phishing Scam

Scam Sniffer reports a recent crypto theft involving fraudulent permit signatures, highlighting persistent DeFi security vulnerabilities.

USDC

130d ago

Summary

Scam Sniffer reported a user lost $1.22 million worth of crypto assets, including USDC and aPlaUSDT0, after unknowingly signing multiple phishing permit transactions. The incident, occurring roughly 30 minutes before detection, demonstrates how malicious blockchain approvals can enable asset transfers without direct wallet hacks.

Terms & Concepts

USDC: A U.S. dollar-pegged stablecoin issued by Circle, used for digital payments.
Phishing Permit Signatures: Fraudulent blockchain signature requests tricking users into authorizing malicious transactions.
aPlaUSDT0: A token representing USDT assets in the Aave protocol or similar platform.