The price of “speed and convenience” in the cryptocurrency space could be as high as $12.4 million. An Ethereum (ETH) holder and regular crypto user just found that out as he lost 4,556 ETH valued at over $12.4 million after he accidentally transferred the asset to an attacker’s poison address.
How copy-paste error enabled $12.4 million attack
Lookonchain update explained that the attacker generated a fake address containing the first and last four characters of the Galaxy Digital’s real deposit recipient. The attacker proceeded to send tiny “dust” transactions to the victim’s wallet.
The goal was to simulate a fake or poison address in the victim’s transaction history. The goal of the malicious actor was to make the address look legitimate and familiar to the victim. The attacker was relying on the victim not paying close attention to details, given the similarity in the address.
The user, likely out of convenience and the need to quickly execute the transaction, opened his transaction history and copied what he thought was Galaxy Digital’s address. Given that it is a transaction he performs on a regular basis, he thought nothing of it and did not double-check the entire address.
This “copy and paste error” has cost the user $12.4 million as he sent the entire 4,556 ETH to the hacker’s address.
The poison address form of scam attacks is gaining traction in the crypto space as hackers rely on users not painstakingly checking addresses. In December 2025, another user lost $50 million after they copied a spoofed address due to visual similarity.
Interestingly, with this user, he had done a test run with $50 to his address, and it was this trial that the malicious hacker used to spoof the wallet as a trap. Unfortunately, the user fell victim to transferring the remaining $49,999,950 to the hacker.
Users warned to watch out for address poisoning scams
The frequency of these attacks calls for more vigilance in the crypto space. Users need to stop copying addresses from transaction history. They also must verify the entire address, not just the first and last four characters, which could be a poisoned address.
One user, Mark Huber, while reacting to the loss, stated that he always prioritizes safety over convenience when making transactions. Huber claimed that if he were to send $12 million, he would probably send it in batches of $100,000 at a time.
The idea is to avoid losing the entire funds in a single transaction. Others have advised the use of the ENS domain or address book to avoid such losses.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
The Ethereum Foundation uses it too! The CoW Swap frontend was hacked, and DeFi leaders advise revoking approvals
The Ethereum DeFi platform CoW Swap experienced DNS hijacking on April 14, which may put users at risk of phishing. Although the protocol itself was not compromised, the risk of frontend attacks remains high. The industry recommends that users revoke approvals before taking any future actions. CoW Swap offers batch transaction functionality and protects against MEV attacks, and its security incident may affect the entire DeFi ecosystem.
ChainNewsAbmedia2h ago
Bitmine promoted to the NYSE Main Board! Tom Lee: U.S. stocks may be at a bottom, and selling pressure on Ether could ease
Bitmine has officially moved from the NYSE American board to the main board in the U.S., marking an important milestone for the company. Despite a sharp drop in its share price, it has still increased its share repurchase program to $4 billion. The company holds a large amount of Ether (ETH), and expects that a rebound in the crypto market will help improve its assets and share price performance.
CryptoCity2h ago
ETH 15-minute drop of 0.72%: Large addresses transferring to and net outflows of funds from the main players triggered a sell-pressure resonance
2026-04-14 16:45 to 2026-04-14 17:00 (UTC), within the 15-minute window ETH’s return recorded -0.72%. The price range fluctuated from 2329.63 to 2351.42 USDT, with a swing of 0.93%. During this period, market capital outflows accelerated markedly, volatility intensified, market sentiment turned cautious, and attention rose rapidly.
The main driver of this anomaly is that on-chain large addresses (whales) centralized and transferred ETH to exchanges, releasing a large sell signal. The net outflow of funds from the main capital totaled as much as -61.80 million USD,
GateNews4h ago
ETH rose 1.06% in 15 minutes: global political stimulation and a coordinated boost to risk appetite and on-chain activity together drove the move
From 15:30 to 15:45 (UTC) on 2026-04-14, the ETH price range was 2340.75 to 2367.0 USDT. Within 15 minutes, the return rate reached +1.06%, and the amplitude was 1.12%. Market volatility intensified, and on-chain and social attention rose in tandem. Short-term trading activity increased significantly, and investor sentiment shifted to optimism.
The main driving force behind this market move is the direct impact of an international political event on risk appetite. The United States announced a blockade of the Strait of Hormuz in the Middle East region related to the White House, creating a stark contrast with peace signals reportedly coming from Iran, and it triggered uncertainty and panic sentiment in the market.
GateNews5h ago
