TLDR

  • Binance’s Changpeng Zhao advocates for blocking poisoned addresses following a $50 million USDT loss.
  • Address poisoning scams resulted in $7.7 million in victim losses in November, alongside a recent $50 million loss.
  • Binance’s security team has identified 15 million poisoned addresses to counter the escalating threat.
  • Zhao suggests filtering small-value transactions and blacklisting scam addresses to enhance security.

Binance co-founder Changpeng Zhao has put forward new security measures to combat address poisoning, a rising phishing threat in the crypto sphere. His proposal follows a recent scam where a victim lost $50 million. Zhao recommends that wallet providers block transactions to “poison addresses” and filter out small-value transactions to deter fraud. This initiative seeks to safeguard users from this increasingly prevalent and harmful cryptocurrency scam method.

CZ Proposes Fix to Address Poisoning After Investor Loses $50M

Binance co-founder Changpeng Zhao has proposed new security measures targeting the elimination of address poisoning, a widespread phishing tactic. This recommendation follows a victim losing $50 million in USDT () due to an address poisoning scam.

This phishing scheme, which has impacted numerous cryptocurrency users, involves attackers sending small initial transactions to deceive victims into sending funds to fraudulent addresses.

 

Zhao’s proposal encourages wallet providers to implement security features that block transactions to “poison addresses.” In a blog post, Zhao underscored the significance of verifying receiving addresses and preventing users from sending funds to addresses flagged as risky.

Address poisoning is growing into a major threat within the crypto space. The scheme tricks users into copying and pasting malicious addresses from their wallet transaction history, resulting in substantial losses.

Rising Threat of Address Poisoning

Address poisoning happens when scammers send small cryptocurrency amounts to a victim’s wallet to make their address seem legitimate. Unaware of the fraudulent intent, the victim then copies this address during a transaction. Through this method, attackers mislead users into sending large sums to their illicit wallets.

The attack vector has become a key focus in the broader problem of -related phishing attacks. Data from Scam Sniffer shows that phishing scams in November 2024 alone caused over $7.7 million in victim losses. This number is projected to increase, especially following the recent incident where a single victim lost $50 million in USDT.

Security firms have recognized phishing, including address poisoning, as one of the most damaging threats to the crypto community. CertiK, a prominent security company, has highlighted this scam type as a major concern for 2024, forecasting that attackers will use address poisoning to steal large sums from unsuspecting users.

Binance’s Algorithm to Combat Address Poisoning

To address this growing issue, Binance’s security team developed an algorithm to identify poisoned addresses. This system has already flagged approximately 15 million addresses suspected of being used in address poisoning scams. The algorithm helps prevent user interaction with these risky by blocking transactions or issuing warnings before completion.

Zhao’s new proposal suggests that wallets should not only block transactions to poisoned addresses but also implement filters to eliminate small-value spam transactions. This measure would prevent users from being misled by seemingly innocuous transactions that are part of a larger scam strategy. Zhao’s push for widespread adoption of this system aims to reduce the occurrence of such attacks.

Call for Industry-Wide Action

Zhao’s appeal to the crypto industry is a call for increased collaboration in developing solutions to combat phishing and address poisoning. He emphasizes that all wallet providers should integrate features that automatically check for poisoned before processing transactions. Furthermore, sharing blacklists of scam addresses across platforms could enable real-time user warnings.

“Wallets should not display spam transactions whatsoever,” Zhao wrote. He further pushed for making the detection and blocking of scam addresses a standard practice in crypto wallets. Implementing such security measures could significantly lower the risk of address poisoning and prevent additional financial losses.

Despite progress, including the identification of millions of poisoned addresses, phishing scams remain a significant concern. Crypto security experts are urging users to stay more vigilant and rely on the latest tools and security updates to protect their assets.