Synopsis: Ethereum users lost $62 million in two months to address-poisoning scams. Scammers send tiny fake transactions to trick people into copying wrong wallet addresses. Read the full article to know how to protect yourself from these types of scams.
Ethereum users lost nearly $62 million between December 2025 and January 2026 due to address-poisoning scams. These attacks exploited low transaction fees and poor wallet practices, allowing cybercriminals to trick users into sending funds to fraudulent addresses.
According to blockchain security firm ScamSniffer, around $50 million was stolen in December 2025 and $12.25 million in January 2026 equivalent to approximately 4,556 ETH at the time.
What Is Address Poisoning?
Address poisoning is a social engineering technique that manipulates users rather than exploiting technical flaws in blockchain networks.
In these attacks, scammers create wallet addresses that closely resemble legitimate ones. They then send tiny transactions to victims, ensuring their fake address appears in the victim’s transaction history.
Later, when users copy an address from past transactions without verifying it carefully, they may accidentally send funds to the scammer instead of the intended recipient.
How Attackers Execute These Scams
Attackers continuously monitor blockchain activity and identify frequently used wallet addresses. Their strategy typically involves:
- Creating lookalike wallet addresses
- Sending small “spam” transactions to victims
- Inserting fake addresses into transaction histories
- Waiting for victims to reuse those addresses
Because blockchain addresses are long and complex, many users rely on copy-paste habits, which makes them vulnerable to this manipulation.
Importantly, these scams are not caused by technical vulnerabilities. They rely entirely on exploiting user behavior.
Lower Fees Have Made Attacks Easier
Several cybersecurity firms report that address poisoning has become more common since transaction fees on Ethereum declined.
In the past, sending thousands of small transactions was expensive, making large-scale poisoning campaigns unprofitable. Lower fees have removed this barrier, enabling attackers to operate more cheaply and efficiently.
As a result:
- Spam transactions have increased
- Network metrics appear inflated
- Active wallet numbers may be misleading
- Genuine adoption becomes harder to measure
Analysts warn that automated poisoning campaigns distort real usage data and complicate market analysis.
Rise of Signature-Based Phishing Attacks
Alongside address poisoning, signature-based phishing scams have also surged.
In January 2026, ScamSniffer reported losses of $6.27 million affecting 4,741 victims, representing a 207% increase compared to December 2025.
Some notable cases include:
- $3.02 million stolen in SLVOn and XAUt tokens
- $1.08 million drained from aEthLBTC
These scams use deceptive “permit” and allowance requests. Victims are tricked into signing approvals that grant attackers access to their wallets.
Once permission is granted, attackers can drain funds instantly without further confirmation.
Also Read: How to Buy Real Gold With Cryptocurrency: A Beginner’s Guide
Why These Scams Are So Effective
Both address poisoning and signature phishing succeed because they target user habits rather than technical systems.
Key psychological factors include:
- Rushing transactions
- Skipping address verification
- Repetitive signing behavior
- Overreliance on past transaction history
Many victims fall into these traps simply because they act quickly and assume previous activity is trustworthy.
How to Protect Yourself from Address Poisoning
Security experts recommend the following precautions:
Verify Every Address: Always double-check the full wallet address before sending funds. Never rely solely on transaction history.
Use Address Books Carefully: Save verified addresses in trusted wallet address books and confirm them periodically.
Avoid Blind Copy-Paste: Do not copy addresses from past transactions without manual verification.
Review Signature Requests: Read permission prompts carefully and avoid approving unlimited allowances unless necessary.
Use Security Tools: Install wallet monitoring and scam-detection extensions where possible.
Future Outlook: More Risks Without Better Tools
As blockchain networks continue to improve efficiency and reduce costs, attackers are likely to scale these scams further.
Without better built-in security tools and stronger user awareness, address poisoning and signature phishing are expected to remain major threats.
Experts emphasize that until more advanced protection mechanisms are widely adopted, individual vigilance remains the strongest defense.
Outlook
The loss of $62 million in just two months highlights how dangerous behavioral exploits can be in the crypto ecosystem. Address poisoning and signature phishing do not rely on hacking code they rely on hacking habits.
For Ethereum users, careful verification, slower transaction practices, and greater awareness are essential to staying safe in an increasingly automated and low-cost blockchain environment.
Written by Parvati Anilkumar
