TechFlow, December 21 — Regarding the "50 million USDT phishing attack" incident, the Ethereum Community Foundation posted a response on X, stating that the practice of truncating addresses with ellipses (e.g., 0xbaf4b1aF...B6495F8b5) should be discontinued immediately. Address information must be displayed in full, as hiding the middle portion of an address creates unnecessary risks. Moreover, certain UI options currently provided by some wallets and block explorers also present security issues, all of which are technically solvable.
It is reported that in this incident, the attacker generated an address with matching first and last three characters to the legitimate one. The victim, without carefully verifying the copied address, transferred 50 million USDT to the attacker's similar-looking address.
