Hackers stole more than $140,000 using Ethereum's new upgrade EIP-7702! MetaMask wallet becomes a new target

Here's the English translation: A new type of phtargeting Ethereum wallets has recently shocked the blockchain community, with hackers successfully stealing crypto assets worth $146,551 by exploiting features in Ethereum upgrade EAccordingP-7702According702. According to a report by blockchain security company SlowMist, attackers initiated malicious batch transactions through MetaMask's EIP-7702 Delegator, bypassing the wallet's traditional security mechanisms. EIP-7702 is a recent Proposal ethereum that allows wallet users to perform batch transactions through a "Ator". Originally designed to improve operational efficiency and programmability, it has now been exploited by hackers as a channel for assets. Through this new feature, fraud groups can silently approve token transfers without full user authorization, essentially opening a backdoor behind users. In this incident, hackers deployed a malicious Delegator contract, tricking users into interacting with it and executing batch transactions to extract assets. A MetaMask user was targeted targeted, $146,551. SlowMist founder Yu Xin stated that such phishing attacks targeting new features are increasingly common, frequent, the with hackers quickly adapting to ethereum upgrade pace and deploying fraud strategies.target was attributed to the notorious hacker Inferno Drainer. According to a Check Point Research report on May 7, 2025, the was associated with over 30,wallet attack incidents in the past six months, causing approximately, in 9 0million. Infernono Drainer is known for designing bait websites and fraudulent smart contracts, further further upgrading phishing techniques using the latest blockchain features. ThisIP-702 incident again confirms their activity level. In fact, on May 20, 2025, blockchain security company GoPlus Security had already warned the community about about that a malicious Delegator address related to EIP-7702 was circulating. becoming This a precursor to this attack, also showing insufficient responsiveness from users and the entire DeFecosystemeFfacingrating. This incident is not an isolated case. In April 2025, the entire crypto ecosystem faced a massiveivephishing scam wave, with 7,565 wallets hacked and asset losses reaching $5.3 million. This demonstrates that fraud methods are continuously evolving, and user risks are rising. To protect against attacks exploiting new features, users should: - Avoid clicking links from unknown websites or DApps - Authorization and addresses - Blockchain security extension tools like Pocket Universe or ScamSniffer - Remain skeptical of unverified smart contracts and features While Ethereum's progress brings more possibilities, it also means hacker toolkits are simultaneously upgrading. Only heightby awareness users protect their assets in this upgrade and confrontation race. Regarding the Telegram privacy policy update, the platform will now more effectively combat combat criminal activities by potentially sharing user information with judicial authorities if valid orders confirm a user is involvement in criminal criminal cases violating Telegram's service terms.

Telegram's Latest Privacy Policy: Will Cooperate with Law Enforcement to Provide Information

According to Telegram's latest official privacy policy section 3.3.1: "Telegram is a cloud service. We store messages, photos, videos, and files from your cloud chats on our servers, allowing you to access your data from any device at any time without relying on third-party backups. All data is strongly encrypted, and each encryption key is stored in multiple data centers across different jurisdictions. This ensures that local engineers or physical intruders cannot access user data."

And section 8.3: "If Telegram receives a valid order from relevant judicial authorities confirming that you are a suspect in a criminal case involving a violation of Telegram's terms of service, we will conduct a legal analysis of the request and may disclose your IP address and phone number to the relevant authorities. If any data is shared, we will record such instances in the quarterly published transparency report."

This means that if law enforcement requests data through legal procedures, Telegram will provide user information. It is important to note that section 8.3 refers to "criminal cases," meaning data will only be provided in situations involving suspected criminal activities.

During the Creative Private Room incident, Telegram was used as a medium for spreading child pornography. Due to the difficulty of preventing these criminal activities, the Taiwanese government even discussed blocking Telegram.

Zhang Xiuyan, the director of the protection department of the Ministry of Health and Welfare, has stated that there are two situations where Telegram might be completely blocked.

1. Telegram has been notified but has not removed the chat room within 24 hours.
2. Unable to contact the Telegram platform.

However, these latest policies will more effectively address individual cases and facilitate cooperation between Telegram and regulatory authorities without further harming the rights of ordinary users.