• U.S. and Canadian authorities disrupt a $4.3M Ethereum phishing scam.
• Secret Service experts track and alert victims of compromised wallets.
• Operation Avalanche prevents further losses in Ethereum approval phishing scam.

A collaborative U.S.-Canadian operation has blocked a $4.3 million approval phishing attack on Ethereum wallet users. The U.S. Secret Service and Canadian law enforcement agencies tracked down and notified the victims. The authorities identified multiple blockchain addresses that were compromised or vulnerable to exploitation.

Scammers use approval phishing to trick users to authorize token transfers after which the fraudsters access control and drain the wallets.. Criminals run these scams through social engineering methods such as the “pig butchering”  romance scheme. Once a victim validates malicious transaction requests the attackers acquire complete control of their assets.

The operation code named ‘Operation Avalanche’ focused on fraudulent Ethereum network transactions. Investigators teamed up with blockchain analysts to identify the wallets affected in the phishing scheme. The team reached out to wallet holders to warn them about the threat and protect their assets.

The operation incorporated multiple law enforcement agencies across Canada and the U.S to stop the ongoing fraud. The B.C Securities Commission and the U.S. Secret Service steered the initiative. Moreover, provincial police forces and securities regulators contributed their skills and resources to the operation.

Analysts derived from the Washington Field Office of the Secret Service provided technical and forensic support for the investigation. The Canadian agencies teamed up with the Secret Service to identify stolen funds and curb future threats. This collaboration helped track transactions and the scammers’ techniques.

Officials disclosed that the hacked wallets had approved token transfers to malicious addresses through their token approval process. This allowed fraudsters to maintain control even when victims did not provide direct fund transfers. These scammers exploited these permitted access to operate undetected and bypass standard security alerts.

Chainalysis data shows that approval phishing has resulted in approximately $2.7 billion in  cryptocurrency losses between 2021 and 2024. However, the actual total loss could surpass these numbers because many cases are not reported. These scams are sophisticated and affect both individual users and decentralized organizations(DAO).

The Ethereum network has suffered massive losses through approval phishing such as the $120 million attack at Badger DAO. The scammers often target rich NFT collectors and active crypto users. Attackers exploit user trust and limited understanding of wallet permissions.

The operation confirmed the importance of international collaboration to disrupt transnational crypto fraud and cybercrime. The investigators collaborated with a blockchain analysis firm and a cryptocurrency exchange to track the suspicious wallet transactions. This initiative dismantled various criminal networks.