Wintermute has issued a warning regarding the misuse of Ethereum's EIP-7702, part of the recent Pectra upgrade, which is being exploited for malicious activities. Originally designed to enhance user experience by supporting batch transactions and setting spending limits, over 80% of EIP-7702 authorizations have been diverted to contracts deploying auto-sweep codes, dubbed "CrimeEnjoyor." These contracts automatically transfer wallet assets if private keys are compromised. Security firms Scam Sniffer and SlowMist have identified the fraud service Inferno Drainer as a key abuser of EIP-7702, with some users losing nearly $150,000 through malicious batch transactions. SlowMist's founder, Yu Xian, emphasized the need for wallet service providers to display authorization contract information to prevent phishing attacks. Security expert Taylor Monahan noted that while EIP-7702 is not inherently vulnerable, it facilitates more efficient attacks, highlighting the importance of securing user private keys.