Wintermute警告：Pectra升级中的EIP-7702正遭恶意滥用，或致用户受自动化攻击

Blockbeats

02 Jun

BlockBeats 消息，6 月 2 日，据 TheBlock 报道，Wintermute 近期发布警告，以太坊 Pectra 升级中的 EIP-7702 功能（账户抽象改进）正在遭恶意滥用，超 80% 授权被用于自动化攻击。区块链安全公司 Scam Sniffer 近期监测到某用户因钓鱼攻击损失近 15 万美元，攻击者部署名为“CrimeEnjoyor”的复制粘贴合约，可自动清空私钥泄露的钱包。EIP-7702 由以太坊创始人 Vitalik Buterin 提出，通过让钱包临时具备智能合约功能来提升用户体验，包括批量处理多笔交易、赞助 Gas 费、使用生物识别/社交验证、设置单次交易限额等。

据 Wintermute 的 Dune 仪表板显示，绝大多数 EIP-7702 授权流向功能相同的恶意合约。安全专家 Taylor Monahan 指出 EIP-7702 使清空地址“成本更低且更省力”。Wintermute 就此评论道，“这既滑稽又残酷，同一段复制的字节码占据了 EIP-7702 授权的大部分。”

BlockBeats 此前报道，慢雾创始人余弦表示，，以太坊新机制 EIP-7702 的最大用户是盗币团伙（而非钓鱼组织）。EIP-7702 允许通过授权自动从私钥或助记词泄露的钱包中转移资金，超过 97% 的 EIP-7702 委托指向盗币合约。

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Most Discussed

1
2
3
4
5
6
7
8
9
10

{"basename":"","ssrTDKData":{"titleTemplate":"%s - Tiger Brokers","title":"Tiger Brokers | Global Stocks, Options & Futures Trading App","description":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","keywords":"tiger brokers,tiger trade,tiger brokers singapore,broker online,stock trading in singapore,share trading singapore,brokerage firm singapore,trading app,stock broker singapore,stock trading platforms,trading account","social":{"ogDescription":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","ogImage":"https://c1.itigergrowtha.com/portal5/static/media/og-logo.be62fbe1.png","ogUrl":"https://www.itiger.com/news/2540556547"},"companyName":"Tiger Brokers"},"pageData":{"isMobile":false,"isTiger":false,"isTTM":true,"region":"SGP","license":"TBSG","edition":"fundamental"},"__swrFallback__":{"@#url:\"https://stock-news.skytigris.cn/v3/news\",params:#id:\"2540556547\",edition:\"fundamental\",,,undefined,":{"share":"https://ttm.financial/m/news/2540556547?lang=en_US&edition=fundamental","thumbnail":"","is_english":false,"pubTime":"2025-06-02 08:17","share_image_url":"https://static.laohu8.com/e9f99090a1c2ed51c021029395664489","id":"2540556547","market":"us","top_or_hot":-1,"title":"Wintermute警告：Pectra升级中的EIP-7702正遭恶意滥用，或致用户受自动化攻击","media":"Blockbeats","content":"<html><body><div><p>BlockBeats 消息，6 月 2 日，据 TheBlock 报道，Wintermute 近期发布警告，以太坊 Pectra 升级中的 EIP-7702 功能（账户抽象改进）正在遭恶意滥用，超 80% 授权被用于自动化攻击。区块链安全公司 Scam Sniffer 近期监测到某用户因钓鱼攻击损失近 15 万美元，攻击者部署名为“CrimeEnjoyor”的复制粘贴合约，可自动清空私钥泄露的钱包。EIP-7702 由以太坊创始人 Vitalik Buterin 提出，通过让钱包临时具备智能合约功能来提升用户体验，包括批量处理多笔交易、赞助 Gas 费、使用生物识别/社交验证、设置单次交易限额等。</p><p>据 Wintermute 的 Dune 仪表板显示，绝大多数 EIP-7702 授权流向功能相同的恶意合约。安全专家 Taylor Monahan 指出 EIP-7702 使清空地址“成本更低且更省力”。Wintermute 就此评论道，“这既滑稽又残酷，同一段复制的字节码占据了 EIP-7702 授权的大部分。”</p><p>BlockBeats 此前报道，慢雾创始人余弦表示，，以太坊新机制 EIP-7702 的最大用户是盗币团伙（而非钓鱼组织）。EIP-7702 允许通过授权自动从私钥或助记词泄露的钱包中转移资金，超过 97% 的 EIP-7702 委托指向盗币合约。</p></div></body></html>","source":"theblockbeats_zh_live","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>Wintermute警告：Pectra升级中的EIP-7702正遭恶意滥用，或致用户受自动化攻击</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\nWintermute警告：Pectra升级中的EIP-7702正遭恶意滥用，或致用户受自动化攻击\n</h2>\n\n<h4 class=\"meta\">\n\n\n2025-06-02 08:17 北京时间&nbsp;&nbsp;&nbsp;<a href=https://www.theblockbeats.info//flash/296425><strong>Blockbeats</strong></a>\n\n\n</h4>\n\n</header>\n<article>\n<div>\n<p>BlockBeats 消息，6 月 2 日，据 TheBlock 报道，Wintermute 近期发布警告，以太坊 Pectra 升级中的 EIP-7702 功能（账户抽象改进）正在遭恶意滥用，超 80% 授权被用于自动化攻击。区块链安全公司 Scam Sniffer 近期监测到某用户因钓鱼攻击损失近 15 万美元，攻击者部署名为“CrimeEnjoyor”的复制粘贴合约，可自动清空私钥泄露的钱包...</p>\n\n<a href=\"https://www.theblockbeats.info//flash/296425\">Source Link</a>\n\n</div>\n\n\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"EZET","symbol_name":"以太坊ETF-Franklin","start_time":0,"source_url":"https://www.theblockbeats.info//flash/296425","article_id":"2540556547","we_media_id":null,"thumbnails":[],"rights":null,"url":"https://stock-news.laohu8.com/highlight/detail?id=2540556547","pubTimestamp":1748823420,"columns":[],"sourceInfo":{"source_id":"theblockbeats_zh_live","name":"blockbeat"},"weMediaInfo":null,"summary":"BlockBeats 消息，6 月 2 日，据 TheBlock 报道，Wintermute 近期发布警告，以太坊 Pectra 升级中的 EIP-7702 功能（账户抽象改进）正在遭恶意滥用，超 8","collect":0,"end_time":0,"defaultTopTitle":"theblockbeats.info","property":[],"viewcount":null,"language":"zh","relate_stocks":{"EZET":"以太坊ETF-Franklin","BK4594":"比特币ETF概念","BK4601":"加密货币现货ETF","ETHE":"以太坊ETF-Grayscale","BK4588":"碎股","EIP":"Eaton Vance Pennsylvania Munic","09009":"博时以太币-U","QETH":"以太坊ETF-Invesco Galaxy","BK4585":"ETF&股票定投概念","03046":"华夏以太币","BK1611":"加密货币现货ETF","IBIT":"iShares Bitcoin Trust ETF","ETHV":"以太坊ETF-VanEck","09179":"嘉实以太币-U","FETH":"以太币ETF-Fidelity","ETHW":"以太坊ETF-Bitwise","03009":"博时以太币","03179":"嘉实以太币","ETH":"迷你以太坊ETF-Grayscale","09046":"华夏以太币-U","CETH":"以太坊ETF-21Shares","ETHA":"以太坊ETF-iShares"},"translate_title":"Wintermute Warning: EIP-7702 in Pectra Upgrade is being maliciously abused or subjected to automated attacks","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"03009":1,"03046":1,"03179":1,"09009":1,"09046":1,"09179":1,"CETH":1,"EIP":1,"ETH":1,"ETHA":1,"ETHE":1,"ETHV":1,"ETHW":1,"EZET":1,"FETH":1,"IBIT":1,"QETH":1},"content_text":"BlockBeats 消息，6 月 2 日，据 TheBlock 报道，Wintermute 近期发布警告，以太坊 Pectra 升级中的 EIP-7702 功能（账户抽象改进）正在遭恶意滥用，超 80% 授权被用于自动化攻击。区块链安全公司 Scam Sniffer 近期监测到某用户因钓鱼攻击损失近 15 万美元，攻击者部署名为“CrimeEnjoyor”的复制粘贴合约，可自动清空私钥泄露的钱包。EIP-7702 由以太坊创始人 Vitalik Buterin 提出，通过让钱包临时具备智能合约功能来提升用户体验，包括批量处理多笔交易、赞助 Gas 费、使用生物识别/社交验证、设置单次交易限额等。据 Wintermute 的 Dune 仪表板显示，绝大多数 EIP-7702 授权流向功能相同的恶意合约。安全专家 Taylor Monahan 指出 EIP-7702 使清空地址“成本更低且更省力”。Wintermute 就此评论道，“这既滑稽又残酷，同一段复制的字节码占据了 EIP-7702 授权的大部分。”BlockBeats 此前报道，慢雾创始人余弦表示，，以太坊新机制 EIP-7702 的最大用户是盗币团伙（而非钓鱼组织）。EIP-7702 允许通过授权自动从私钥或助记词泄露的钱包中转移资金，超过 97% 的 EIP-7702 委托指向盗币合约。","kind":"live","is_publish_news":false,"is_publish_highlight":false,"is_publish_live":true,"is_publish_wemedia":null,"editions":null,"column":"","sentiment":"0","news_tag":"","news_rank":0,"symbols":[],"gpt_button":1,"code":"91000000","status":"200"}}}