2025-12-31 16:27:56

December's security threat data has just been released. According to disclosures from security agencies, the total losses caused by various attacks on the Web3 ecosystem this month reached $117.8 million, a staggering figure.

The most severe type of attack was phishing, accounting for $93.4 million in losses, over 80% of the total. Among these phishing losses, $51.8 million were directly related to address poisoning—indicating that precise phishing strategies remain the primary weapon of hackers.

Data shows that users' awareness of address verification is still a weak point. Poisoning attacks often exploit similar domain names or copy addresses to deceive users. Once fooled, it results in direct fund transfers that are almost impossible to recover. This also serves as a reminder to the entire ecosystem that more innovative solutions are needed for wallet security and address confirmation.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

9 Likes

Reward
9
6
Repost
Share

Comment

0/400

notSatoshi1971

· 2025-12-31 16:58

Here we go again. Every time I see this data, I feel exhausted. Over 100 million gone just because of a fake address? Seriously, these people need to improve their scam awareness.

View OriginalReply0

FarmHopper

· 2025-12-31 16:58

Once again, I got phishinged. This month, the loss is almost 120 million? Come on, our group of retail investors really need to wake up. Address poisoning is indeed a deadly trick. Copying and pasting can easily lead to losses. Who can save me? Wallet security really needs a breakthrough. The current protection schemes are ridiculous. Can we have a foolproof solution? That's why I now keep my funds in a cold wallet and clear my hot wallet. I don't trust anything. Honestly, our user education can't keep up, and hackers' skills are so advanced. How are we supposed to deal with this?

View OriginalReply0

UnluckyValidator

· 2025-12-31 16:57

It's another phishing incident. I keep saying these low-level tricks are still so effective. Address poisoning is really deadly. One slip and you're bankrupt. $110 million. How many people must have been exploited to accumulate that amount? Honestly, it's greed. Always thinking about snatching a bargain, but it all backfires. Copy-pasting alone can lose over 50 million. Can you believe it? I think it all depends on wallet manufacturers to figure out a solution. Users have already done their best. Once this data comes out, I guess another wave of people will be eating dirt.

View OriginalReply0

BearMarketBarber

· 2025-12-31 16:55

It's address poisoning again. This trick is really clever, impossible to guard against. Are phishing groups really making this much money, over 90 million a month? Why did I choose the wrong industry? The key is that everyone is still too greedy. When they see a good opportunity, they neglect verification. I am the same. Alright, wallet security really needs someone to do something. We can't just let it go like this. It's always the same old tricks. When will the defenses be upgraded? Over 100 million lost in a month. Just looking at this number makes my heart ache. Sigh.

View OriginalReply0

TokenomicsPolice

· 2025-12-31 16:50

It's another phishing scam. These people just never stop. Can we try a different approach next time... Address verification is definitely a weak point that needs to be strengthened. Just a small trick and over 50 million was stolen, it's outrageous. Why do these basic mistakes keep happening? Users need to remember better. As soon as these numbers come out, a wave of newcomers will be scared off again.

View OriginalReply0

MetaDreamer

· 2025-12-31 16:40

Once again, I got phishing attacked. Looking at this data just makes people frustrated. How are there still so many people falling for it? Really, just remember one thing—don't click on uncertain links. No matter how urgent, it's not worth it. Wallet security really needs an upgrade. Right now, the defenses are a bit fragile. Over 50 million in poisoning losses... Just thinking about it makes me speechless. How many people have lost everything? Is address verification really that difficult? Why hasn't the ecosystem come up with a reliable solution yet? I think this is due to insufficient user education. Platforms need to take responsibility. Over 90 million in phishing losses account for more than 80%. Is the market just being sliced like this? Web3 is still too young. The security system needs to be fundamentally rebuilt. Domain poisoning is really clever. Even I almost fell for it sometimes. Transfers are just transfers. Once gone, they can't be recovered. That's the most heartbreaking part.

View OriginalReply0