According to a latest report from Scamsniffer, Crypto users lost $5.29 million to phishing scams in April 2025. The fraud reporting platform noted that this represents a 17% decline compared to the losses in March.
However, the number of phishing victims increased significantly in April, with a total of 7,565 addresses affected by the attack. This is a 26% increase compared to the 5,992 casualties in March, highlighting evolving tactics by con artists.
The biggest loss of the month was a $1.43 million loss by the whales, as they signed several phishing signatures. This shows that high-value casualties remain vulnerable as the biggest attack in March was a whale that lost $1.82 billion to a similar attack vector.
April 2025 Phishing Report (Source: Scamsniffer)
There were other users who lost a significant amount of signed phishing signatures as well. These include users who lost $666,414 in their multi-permit fishing signatures, 0xC1E4260CB, and 0x7C930969FCF who lost $234,000.
Meanwhile, last month’s second biggest attack was a loss of $700,000 by one user who copied the wrong address. Address addiction has been ranked this year as one of the leading causes of phishing fraud losses, and this seems to continue.
In this particular case, the victim copied a fake address that shared the same first six characters with a legitimate address, but the last four characters were the same except in cases of different alphabets.
Naturally, there were other serious losses to deal with addiction. In one case, another user lost $150,000 after copying the wrong address, but 0XEFC4F1D5 also sent $467,175 to the wrong address for the same reason.
Nevertheless, April is the month with the lowest crypto phishing losses this year, besides February, which saw a loss of $5.32 million.
Scammers are devising new ways to attack users
Meanwhile, April has also seen scammers rely heavily on a variety of measures to target users. Scamsniffer identified fake “sorcan” ads in Google search results as phishing links, noting that the Spoof site is Google’s main search result when users search for Sorcan.
It pointed out:
“These phishing ads are designed to drain wallets through malicious transaction signatures.”
The phishing link and the URL of the real page look the same, but when you click on the link, the user is actually redirected to SolScaan.com. Google has removed the ads.
Interestingly, fake Google ads were not the only way an attacker was trying to exploit users. Nick Johnson, lead developer at Ethereum Name Service, has also identified another email phishing attack targeting Google accounts. The scammers used Google sites to deploy fake login pages for reliability.
As fraudsters rely on a variety of techniques to target crypto users, security analysts continue to emphasize how individuals can protect themselves from such attacks by identifying they are phished.
Scamsniffer has shared an infographic on the page that demonstrates the various ways scammers can launch these attacks using Twitter, Discord, Airdrop, fraud ads and software compromises. We also identified all popular phishing signatures that users can unconsciously sign and lose assets.
Meanwhile, Revoke Cash has posted the precautions users need to take to avoid address addiction. These notes include double checking all addresses before running a transaction, and using wallets that support bookmarks and whitelists, rather than copying addresses from transaction history.
$364 million was lost to Crypto Hacks in April
Meanwhile, losses of over $5 million in phishing scams account for only a small percentage of total crypto losses in April. A total of $364 million was lost to hacks and fraud in April, according to blockchain security company Certik.
One incident caused a $336 million loss and involved a social engineering attack that led to the theft of 3,520 Bitcoin from one individual who had held assets since 2017.
Certik reported phishing loss of $337 million in April (Source: Certik)
Certik categorized the attack as phishing. Their indicators meant that the phishing category saw a total loss of $337 million in April, along with a loss of $1.36 million to address addiction.
Beyond this attack, hackers exploited the distributed Exchange Kiloex for $7.5 million, ranging from the loop scale, and stole $5.5 million from the Zksync Airdrop contract. Bitcoin Mission and Term Lab also lost $2 million and $1.57 million, respectively.
Discover more from Earlybirds Invest
Subscribe to get the latest posts sent to your email.
