{"id":5440,"date":"2025-11-12T12:16:37","date_gmt":"2025-11-12T12:16:37","guid":{"rendered":"https:\/\/digkrypton.com\/index.php\/2025\/11\/12\/ai-driven-phishing-scams-and-hidden-crypto-exploits-shake-web3-security\/"},"modified":"2025-11-12T12:16:37","modified_gmt":"2025-11-12T12:16:37","slug":"ai-driven-phishing-scams-and-hidden-crypto-exploits-shake-web3-security","status":"publish","type":"post","link":"https:\/\/digkrypton.com\/index.php\/2025\/11\/12\/ai-driven-phishing-scams-and-hidden-crypto-exploits-shake-web3-security\/","title":{"rendered":"AI-driven phishing scams and hidden crypto exploits shake Web3 security"},"content":{"rendered":"<p>SBI Crypto was breached, losing $21 million in assets via a suspected laundering operation.<br \/>\nA phishing scam targeting GMGN tricked 107 users into approving fake transactions.<br \/>\nHoneypot token scams rose 600% month-on-month, with over 2,100 tokens detected.<\/p>\n<p>Web3 has entered a new phase of cyber threats, with attackers now leveraging artificial intelligence, automation tools, and complex social engineering to exploit users across decentralised networks.<\/p>\n<p><a href=\"https:\/\/medium.com\/@GoPlus\/goplus-10%E6%9C%88web3%E5%AE%89%E5%85%A8%E6%95%B0%E6%8D%AE%E6%8A%A5%E5%91%8A-625dcbc46aea\">According to GoPlus Security<\/a>, over $45.84 million was lost in October alone from a surge of scams, phishing attacks, token exploits, and wallet hacks.<\/p>\n<p>The data reveals how scammers are evolving their methods, creating high-impact exploits that have affected thousands of users and platforms across Ethereum, Binance Smart Chain, and Base.<\/p>\n<h2>Hackers use AI and automation to boost phishing campaigns<\/h2>\n<p>GoPlus observed a sharp increase in phishing attacks that led to more than $3.5 million in losses.<\/p>\n<p>A growing number of these scams are powered by \u201cPhishing-as-a-Service\u201d platforms, where threat actors use AI tools to rapidly generate fake websites and deploy large-scale campaigns with lower operational costs.<\/p>\n<p>One of the largest phishing cases involved the trading platform GMGN.<\/p>\n<p>In this incident, 107 users were misled by a fake third-party website into authorising harmful transactions. Losses totalled more than $700,000.<\/p>\n<p>The phishing scam replicated legitimate wallet interactions, tricking victims into signing approval requests that gave attackers control over their funds.<\/p>\n<p>In another case, a trader approved a malicious \u201cincreaseAllowance\u201d command, resulting in a $325,000 loss in Coinbase Wrapped Bitcoin.<\/p>\n<p>Separately, another user was hit with a $440,000 loss after signing a fraudulent \u201cpermit\u201d transaction.<\/p>\n<p>Both exploits highlight the rise in fake contract approvals, often enabled by deceptive interfaces mimicking trusted apps.<\/p>\n<h2>Sophisticated exploits linked to state-style laundering tactics<\/h2>\n<p>The single largest exploit came from SBI Crypto, which suffered a breach that drained $21 million worth of digital assets. The losses included Bitcoin, Ethereum, Litecoin, Dogecoin, and Bitcoin Cash.<\/p>\n<p>Although SBI Crypto did not officially confirm the source of the breach, a joint investigation by ZachXBT and Cyvers suggested patterns similar to those used by North Korean hacker groups.<\/p>\n<p>The attackers allegedly funnelled funds through Tornado Cash, a known crypto mixer previously sanctioned for its role in laundering state-sponsored thefts.<\/p>\n<p>This laundering method closely mirrors activity linked to the Lazarus Group, though the report stressed that the connection remains unverified.<\/p>\n<h2>Web3 platforms under attack from honeypot tokens<\/h2>\n<p>Alongside phishing and exploits, the report found a dramatic spike in honeypot tokens.<\/p>\n<p>These are malicious smart contracts that allow users to buy tokens but prevent them from selling or withdrawing funds.<\/p>\n<p>Honeypot tokens surged 600% last month, reaching 2,189 identified tokens\u2014though still far fewer than the 40,000 recorded in June 2025.<\/p>\n<p>Source: <a href=\"https:\/\/medium.com\/@GoPlus\/goplus-10%E6%9C%88web3%E5%AE%89%E5%85%A8%E6%95%B0%E6%8D%AE%E6%8A%A5%E5%91%8A-625dcbc46aea\">GoPlus Security<\/a><\/p>\n<p>The Binance Smart Chain accounted for the bulk of these tokens at 1,780, followed by 216 on Ethereum and 131 on Base.<\/p>\n<p>These tokens are embedded with hidden restrictions that block transactions, stranding investor funds in illiquid assets.<\/p>\n<p>Their increase underscores a shift toward embedded contract-level fraud, which can bypass basic security tools.<\/p>\n<h2>Tokens and socials compromised in wider exploits<\/h2>\n<p>The wider ecosystem also saw losses from social media and platform-based breaches.<\/p>\n<p>Astra Nova\u2019s official social account was hijacked, triggering a large-scale sell-off of its native token RVV and causing losses of approximately $10.3 million.<\/p>\n<p>In a separate exploit, decentralised finance platform Garden Finance was hit with a vulnerability that cost users around $10.8 million, according to ZachXBT.<\/p>\n<p>These incidents reflect a widening surface of attack across both user-facing interfaces and backend contract code.<\/p>\n<p>The post <a href=\"https:\/\/coinjournal.net\/news\/ai-driven-phishing-scams-and-hidden-crypto-exploits-shake-web3-security\/\">AI-driven phishing scams and hidden crypto exploits shake Web3 security<\/a> appeared first on <a href=\"https:\/\/coinjournal.net\/\">CoinJournal<\/a>.<\/p>","protected":false},"excerpt":{"rendered":"<p>SBI Crypto was breached, losing $21 million in assets via a suspected laundering operation. A phishing scam targeting GMGN tricked 107 users into approving fake transactions. Honeypot token scams rose 600% month-on-month, with over 2,100 tokens detected. Web3 has entered a new phase of cyber threats, with attackers now leveraging artificial intelligence, automation tools, and [&hellip;]<\/p>\n","protected":false},"author":0,"featured_media":5438,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"tdm_status":"","tdm_grid_status":"","footnotes":""},"categories":[100],"tags":[],"class_list":{"0":"post-5440","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-ethereum"},"acf":[],"_links":{"self":[{"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/posts\/5440","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/comments?post=5440"}],"version-history":[{"count":0,"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/posts\/5440\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/media\/5438"}],"wp:attachment":[{"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/media?parent=5440"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/categories?post=5440"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/digkrypton.com\/index.php\/wp-json\/wp\/v2\/tags?post=5440"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}