Phantom Exploit Sweeps Crypto Wallets With Small, Silent Losses
In late December and early January, hundreds of cryptocurrency wallets across Ethereum Virtual Machine (EVM) compatible networks were silently drained in a coordinated exploit that has already siphoned over $107,000 in user funds. On-chain investigator ZachXBT alerted the crypto community after detecting a pattern of small losses typically under $2,000 per wallet quietly flowing into a single suspicious address, suggesting a broad-scale theft rather than isolated hacks. The attack appears to have started through deceptive channels, including phishing emails impersonating wallet providers like MetaMask and compromised browser wallet extensions, tricking users into approving malicious smart contract interactions. Because each loss was small, many victims didn’t notice immediately, allowing the exploit to spread widely before it was flagged. The root cause of the breach has not yet been definitively identified, but investigators and security experts are urging users to revoke suspicious permissions, verify sender addresses, and adopt stronger wallet hygiene to prevent further losses.
