Inferno Drainer uses Ethereum's EIP-7702 to carry out a new type of attack, resulting in a single loss of $150000

According to Beincrypto, the blockchain security platform Scam Sniffer has revealed that the well-known phishing organization Inferno Drainer recently used Ethereum's EIP-7702 upgrade feature to carry out a new type of attack, resulting in a single loss of $150000. EIP-7702 is a key part of Pectra's upgrade, which allows externally owned accounts (EOAs) to temporarily act as smart contract wallets during transactions, allowing attackers to perform bulk token transfer operations through authorized MetaMask wallets. Founder of SlowMist Technology, Cosine, pointed out that this attack marks an upgrade in phishing strategy: attackers no longer directly hijack wallets, but instead use&34; execute& 34; Command the backend to execute malicious batch authorization. Security experts suggest that users regularly check the token authorization status and use tools such as Etherscan to verify whether their wallets have been maliciously entrusted.