Blockchain security firm Blockfence recently uncovered an intricate scam method that has defrauded over 42,000 victims of more than $32 million since April 2023.
What Happened: Blockfence head of security research Pablo Sabbatella detailed in a Jan. 18 report how scammers successfully evaded detection from many industry-standard “rug pull detectors.”
The culprits essentially manipulated token supply figures by messing with the minting and burning functions of smart contracts, Sabbatella explained.
Minting and burning relates to the creation and destruction of cryptocurrency tokens.
The scammers’ strategy involves creating fake tokens that mimic those of upcoming cryptocurrency projects, exploiting investors’ fear of missing out (FOMO) upon the launch of promising projects.
Sabbatella elaborated that the scammers start by transferring 10–20 Ether (CRYPTO: ETH) to an externally owned account, which is then used to generate these fraudulent tokens. These are used to create seemingly legitimate trading activity in liquidity pools on Ethereum-based decentralized exchanges like Uniswap (CRYPTO: UNI) by injecting fake liquidity.
A key deception technique involves the use of a lock() function on the liquidity pool (LP) tokens, giving investors a false sense of security against rug pulls. The lock() function usually serves to lock a token’s liquidity pool, ensuring the developer cannot suddenly remove all liquidity and send the token price to zero.
The scammers then execute a function that reduces the victim’s token balance to “1.” This makes it effectively unsellable, as the scammer has technically burned the victim’s tokens. The token, however, remains visible in the victim’s wallet, adding to the illusion.
“The scammer then removes the liquidity from the LP, dropping the token value to nearly zero,” Sabbatella explained.
To avoid drawing excessive attention, the scammers would return a portion of the stolen ETH, typically between 5–20 ETH, from each fraudulent operation.
Additionally, the scammers’ technique includes the token contract’s creator renouncing ownership, a move that helps bypass some detection tools.
“By doing this, the victims buying the token are misled, as some rug pull detectors even miss and mark this token as ‘safe,'” Sabbatella stated.
Read Also: Bitcoin ETFs…
Click Here to Read the Full Original Article at Cryptocurrencies Feed…
