A crypto whale has lost approximately $55.4 million worth of Dai stablecoins in a sophisticated phishing attack.
The incident was first reported by on-chain investigator ZachXBT and later confirmed by security firm CertiK. The attack appears to have been executed using a phishing tool known as Inferno Drainer, which entices victims into providing sensitive information through fake websites or emails that mimic legitimate cryptocurrency exchanges or DeFi protocols.
Maker Vaults are collateralized debt positions where users can borrow Dai stablecoins by depositing collateral.
Once the attacker obtained access to the whale’s EOA, they were able to exploit a vulnerability that allowed them to take control of a Maker Vault.