AUS
NZ
UK
CA
USA
IND
The notorious crypto phishing toolkit Angel Drainer has resurfaced with a new iteration known as AngelX, which is reportedly more sophisticated and elusive than its predecessor. According to a September 4 report from blockchain security firm Blockade, AngelX has already been used to deploy 300 malicious decentralized applications (DApps) aimed at stealing digital assets from cryptocurrency users.
Blockaid highlighted that {Angel} (ANGLE) includes advanced phishing features specifically designed to exploit vulnerabilities in newer and less mature blockchain networks, such as The Open Network (TON) and the Tron network. These platforms are perceived as less fortified against such attacks due to the relatively limited availability of robust security measures and support.
The security firm also detected over 150 new scams powered by AngelX since its launch on August 31. One notable characteristic of AngelX is its high evasion rate, allowing many of its malicious applications to avoid detection by existing security vendors. The system also boasts an enhanced user experience (UX) and a more versatile control panel, enabling scammers to create highly customizable phishing applications across a broader spectrum of blockchains.
Blockade's early identification of AngelX has been instrumental in protecting approximately $400,000 in assets that could have otherwise been compromised in the initial five days of its operation. Previously, the original Angel Drainer had largely ceased its activities by July 16 after the developers feared their identities might be exposed.
Security estimate that Angel Drainer-related phishing schemes have resulted in the theft of approximately $25 million in cryptocurrency assets. The Drainer toolkits enable scammers to deplete crypto wallets by deceiving users into approving unauthorized transactions. Typically, these toolkits are provided to scammers in exchange for a share of the stolen funds.
