Ethereum EIP-7702 WLFI Phishing Exploit Drains Tokens
Scammers have launched large-scale WLFI phishing attacks exploiting Ethereum’s EIP-7702 delegate function to hijack wallets and drain WLFI holdings. By tricking users into signing malicious delegate calls, hidden contracts can auto-execute to siphon airdrops and token balances at scale. Security firm SlowMist has reported multiple cases targeting enthusiastic WLFI holders, while fraudsters also airdropped fake WLFI tokens into honeypot swaps on Phantom Swap, resulting in losses such as $4,876 for one trader. These incidents highlight emerging crypto security risks with EIP-7702 features. Traders holding WLFI should scrutinize transaction approvals, revoke unused delegate permissions, and transfer assets to secure wallets immediately to mitigate phishing threats.
Bearish
This exploit undermines confidence in WLFI and its EIP-7702 implementation, as large-scale token drains and honeypot scams erode trust among holders and potential investors. In the short term, WLFI price is likely to face selling pressure as compromised tokens hit secondary markets and cautious traders revoke permissions or withdraw funds. Long-term impact may depend on developer and community responses to patch delegate approvals and enhance wallet security, but until vulnerabilities are resolved, WLFI remains at risk of further dumps and negative sentiment, supporting a bearish outlook.