Rewards Hub A sophisticated phishing attack has targeted GMGN users, resulting in over $700,000 in losses. The attack involved the use of 'Pi Xiu' pools, which allow only buying and not selling, created from two addresses: BSC: 0xF130B08341F9e305894bE3618EE55eedcccD2ee0 and Solana: 88tpuCQchoyABszFDbrcD7hvkaUS3CAoJb94nFRT1MHU. Hackers exploited these pools by withdrawing liquidity, effectively stealing user funds.
The attack did not involve the leakage of private keys, suggesting a high-level phishing method. It is suspected that attackers obtained GMGN account login signatures, such as access and refresh tokens, through phishing websites. This allowed them to control user accounts without accessing private keys or bypassing two-factor authentication, using 'Pi Xiu' pools to indirectly siphon funds. GMGN has since addressed the issue, but the exact exploitation method remains known only to GMGN.
GMGN Users Targeted in $700,000 Phishing Scheme Exploiting 'Pi Xiu' Pools
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.