Beware of permit phishing scams: Users lost $230,000 due to signing malicious authorization transactions

SignatureVerifier · 2026-01-06T10:12:09+00:00

Recently, a user was phished after signing a permit transaction, resulting in a loss of $230,000 worth of assets. The attacker achieved the transfer through malicious authorization. This reminds us to carefully verify permissions in Web3 transactions, grant the minimum necessary access, and regularly review and revoke unnecessary authorizations.

SignatureVerifier

2026-01-06 10:12:09

Abstract generation in progress

【ChainNews】Recently, there is a case worth warning about. A user, after signing what appeared to be an ordinary permit transaction, was attacked by a phishing attacker and had assets worth $230,000 in aArbWETH and aEthLBTC transferred away.

These types of attacks are usually carried out through malicious permit or increaseAllowance authorization transactions. Many people do not carefully verify these transactions and simply click to sign, resulting in being tricked into granting excessive token transfer permissions. The phishing attacker then directly transfers out your assets using this authorization.

This reminds us to be especially cautious in Web3 operations: before signing any transaction, carefully check what permissions you are granting, especially for transactions involving allowance and permit. The best practice is to grant only the minimum necessary permissions or regularly check your token authorization status and revoke unnecessary permissions in a timely manner.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

11 Likes

Reward
11
6
Repost
Share

Comment

0/400

ForkThisDAO

· 01-08 16:01

23 million USD in one go, that's a bold move... I now have to think for a few more seconds when I see permit transactions. --- Honestly, these phishing schemes are becoming more and more outrageous, just betting on your quick fingers and not paying attention. --- Both permit and allowance, you really need to distinguish between these two things, or else the money will be gone. --- Regularly checking authorizations really needs to become a habit; some transactions you forget what you approved after a year or so. --- Why do you need to give such high permissions? There's really no need. --- This loss was outrageous; just signing your name and you could be kicked out... Web3 is so risky. --- People who sign directly now should definitely learn a lesson; being too casual is dangerous.

View OriginalReply0

airdrop_whisperer

· 01-08 05:47

$230,000 just disappeared like that, it's too outrageous... I don't even dare to click permit anymore, afraid that I might accidentally get emptied.

View OriginalReply0

SolidityStruggler

· 01-06 10:38

230,000 gone? This guy must be so anxious, signing without even reading the permit.

View OriginalReply0

FlashLoanLord

· 01-06 10:31

230,000 just gone... I think this guy will probably regret it to death. You really need to look twice before signing. --- This permit trap is too ruthless, it feels impossible to defend against. --- I've always only given the minimum allowance, I've seen too many wallets get drained. --- The scammers are here to fleece sheep, hurry up and check the approve section to see if you've been tricked. --- It's ridiculous, contract interactions have to be handled as carefully as defusing a bomb. --- Why do some people sign without reading... Isn't that asking for trouble? --- Regularly checking permissions is a brilliant suggestion. I now use tools to scan them once in a while. --- No way, increaseAllowance can also be exploited? I need to check that immediately. --- Web3 is the most frustrating part, one slip and everything's ruined. Centralized exchanges are so much more comfortable. --- Make sure to read the permissions carefully before signing, everyone. This is not a joke.

View OriginalReply0

PumpBeforeRug

· 01-06 10:20

$230,000 just disappeared... But to be honest, permit trap things are really hard to defend against, my friend almost fell for it too. --- It's again the authorization problem. People who directly click "Sign" should really reflect on themselves; this basic knowledge can't be missing in Web3. --- So now I always revoke. Better to be troublesome than to get cut. --- That's why I never use MetaMask's auto-sign... It's a hassle, but I feel at ease. --- I now have to look at permit stuff with a magnifying glass three times before I dare to click. I'm cautious but it's effective. --- A hard lesson learned. I was also scammed on authorization last year, though not as badly, but that feeling was truly terrible. --- Why are there still people who don't check authorization? Can't they even do this basic operation? --- I think exchanges should force pop-up permission confirmation pages to prevent such basic mistakes from happening again.

View OriginalReply0

ForeverBuyingDips

· 01-06 10:17

230,000 just like that gone, my mom is too ruthless, this permit scam is really hard to guard against.

View OriginalReply0