A phishing scammer has returned $10 million to a victim who lost $24 million worth of liquid staked Ethereum in a phishing scam last year. The attacker has promised to return the remaining amount but requested to speak with the victim privately first.
According to blockchain security firm Scam Sniffer, the attacker started refunding the stolen funds on July 6 by sending a message stating, “I am the guy who took your money. I want to give the money back.” The attacker proceeded to transfer around $9.3 million worth of DAI stablecoins to the victim in two transactions, as shown by Etherscan data. As of July 15, an additional $1 million was refunded, bringing the total refund to $10.3 million.
The victim confirmed receiving the transfers and expressed gratitude for the return of the funds while requesting the remaining balance to be sent back to their address. On July 16, the attacker expressed intentions to refund the rest of the stolen amount but preferred to discuss the matter privately with the victim. A Telegram Group was set up by the victim for communication, but it is unclear whether an agreement has been reached regarding the remaining balance.
It is not uncommon for hackers to steal and return stolen funds after negotiations with victims through blockchain messages. The reason behind this specific refund remains unclear, considering that the attack took place nearly 10 months ago. Phishing attacks continue to pose a significant threat to crypto users, with malicious actors often impersonating legitimate accounts on social media platforms to deceive victims.
Scam Sniffer highlighted that phishing attacks have resulted in approximately $341 million in losses during the first half of this year, surpassing the total of $295 million stolen in 2023. This incident serves as a reminder of the risks associated with engaging in the crypto space and the importance of remaining vigilant against potential threats.