The Rise of Address Poisoning Attacks
The cryptocurrency landscape is facing a worrying trend as address poisoning attacks, a sophisticated scam aimed at misdirecting funds, become increasingly prevalent among Ethereum users. Although these fraudulent practices have existed for some time, recent analysis reveals that the scale and automation of these attacks have significantly intensified, transforming isolated incidents into a well-coordinated scheme.
A Case Study: Nima’s Experience
A case that highlights this issue involved an Ethereum user named Nima, who experienced an influx of alerts—89 notifications via Etherscan Address Watch—following a modest transfer of two stablecoins. The multitude of alerts was triggered by various insignificant transactions directed to his wallet, part of a broader address poisoning initiative rather than genuine payments.
How Address Poisoning Works
The mechanics behind address poisoning are relatively straightforward. Attackers aim to clutter a user’s transaction history with misleading but similar-looking wallet addresses. They monitor blockchain activity, specifically watching for legitimate transactions. Once a user transfers funds, malicious software generates fake wallet addresses that closely resemble the true ones, focusing on the start and end characters. Subsequently, these counterfeit addresses receive minimal quantities of cryptocurrency—often in trivial amounts—resulting in dust transfers.
Since many wallets and blockchain explorers highlight recent transactions, these phony addresses appear in the user’s transaction list. This setup creates a risky scenario where users may accidentally copy a fraudulent address when attempting future transfers.
Implications of Address Poisoning
The implications of such attacks are extensive. A report from 2025 indicates that in the period from July 2022 to June 2024, there were around 17 million address poisoning attempts targeting roughly 1.3 million Ethereum accounts, leading to confirmed losses surpassing $79 million.
The Economics Behind the Attacks
The primary factor fueling the increase in these attacks is the basic principle of economics. A study found that the success rate of a poisoning attempt is merely about 0.1%, meaning only one scam succeeds out of approximately 10,000 tries. Yet, attackers compensate for this low probability by launching vast numbers of poisoning transactions. Furthermore, following the Ethereum Fusaka upgrade, reduced transaction fees have made it economically viable for scammers to execute thousands or even millions of these negligible dust transfers, exacerbating the problem.
