Crypto Veteran Loses $24 Million in Address Poisoning Attack, Involves Real-World Threats

Blockchain security firm PeckShield detected a large-scale address poisoning attack that resulted in the loss of approximately $24 million in aEthUSDC tokens from the personal wallet of well-known crypto figure sillytuna. On-chain data shows that the attacker forged similar addresses, tricking the user into mistakenly transferring funds to a maliciously controlled wallet (0x6fef…a246032), successfully transferring 23.59 million aEthUSDC.

Following the attack, the hacker quickly converted approximately $20 million of the assets into DAI stablecoin and dispersed them into two intermediate wallets (0xdCA9…c9C4 and 0xd0c2…dd3e) in an attempt to conceal the flow of funds. At the same time, monitoring records show that some of the funds have been transferred to the Arbitrum network via cross-chain bridges, including a 49.85 ETH bridging operation that ultimately generated over 106,000 USDC on Arbitrum, indicating that the attacker is evading tracking by transferring in small batches.

After the incident was exposed, sillytuna himself confirmed on social media that his wallet had been stolen and revealed that the attack was accompanied by serious real-world threats – including violence, armed intimidation, kidnapping, and sexual assault threats, and that a police report had been filed. He expressed relief that he had not suffered physical harm and announced that he would be completely withdrawing from the crypto industry. Despite suffering huge losses, sillytuna publicly expressed his gratitude for his safe escape. Currently, security teams such as PeckShield are assisting in tracking the flow of funds, and the community has launched a bounty to encourage the provision of clues to recover the stolen assets.