• Hacks & Exploits
  • Ethereum

Ethereum’s EIP-7702 Upgrade Hijacked

6/2/2025
2min read
Denislav Manolov's Image
by Denislav Manolov
Crypto Expert at Airdrops.com
Ethereum’s EIP-7702 Upgrade Hijacked
6/2/2025
2min read
Denislav Manolov's Image
by Denislav Manolov
Crypto Expert

From Innovation to Exploitation

Ethereum’s EIP-7702 upgrade, intended to enhance smart wallet functionality, has rapidly come under intense scrutiny. According to Yu Xian, founder of security firm SlowMist, the new mechanism is being exploited by organized coin theft gangs who are using it to automate fund transfers from compromised wallets.

In a public alert on X (formerly Twitter), Xian revealed:

“The ‘most High’ users of the new mechanism EIP-7702 are actually coin theft gangs… Over 97% of EIP-7702 delegations are authorized to theft contracts.”

How the Exploit Works

The delegation function introduced in EIP-7702 allows users to temporarily authorize other contracts to act on their behalf—a flexibility feature designed to power up wallet utility.

However, attackers are now leveraging leaked private keys or mnemonic phrases to delegate permissions to malicious contracts. Once authorized, these contracts automatically drain the user’s wallet of ETH and ERC-20 tokens, often in seconds.

This delegation-based theft doesn’t rely on phishing. Instead, it’s pure exploitation of wallet authorization, which makes it much harder to detect or prevent with standard safety tools.

Community on High Alert

The Ethereum developer community is now actively discussing mitigation strategies across GitHub, Discord, and other dev hubs. However, as of now:

  • No immediate patch or fix has been deployed
  • Discussions focus on wallet hygiene and user education
  • Some suggest restricting delegation parameters or introducing stricter approval flows

Security experts are urging users to review delegation permissions, rotate mnemonic phrases, and avoid using EIP-7702-enabled wallets unless absolutely necessary.

Rising Risk for Token Holders

This incident exposes a major systemic vulnerability in Ethereum’s push toward smart wallet innovation. If left unresolved, it could:

  • Shake user trust in Ethereum’s ecosystem upgrades
  • Lead to millions in stolen assets across decentralized wallets
  • Stall the adoption of future proposals involving account abstraction or enhanced authorization

For now, users are advised to check wallet permissions, disable unknown delegations, and consider hardware wallet solutions for high-value holdings.

Share with your friends on social media:

Previous Articles

World Vision Korea Opens the Post-Ban Crypto Era
6/2/20252 min read

World Vision Korea Opens the Post-Ban Crypto Era

A small ETH sale by a nonprofit might just mark a massive turning point for crypto regulation in South Korea.

$5B FTX Payout Hits Wallets
6/2/20252 min read

$5B FTX Payout Hits Wallets

FTX begins distributing $5 billion in recovered funds, and the crypto market is bracing for impact—will this fuel the next breakout?

Kazakhstan Eyes “CryptoCity” Pilot to Legalize Bitcoin Payments
5/30/20252 min read

Kazakhstan Eyes “CryptoCity” Pilot to Legalize Bitcoin Payments

The Central Asian nation wants to regulate crypto, not ban it—starting with a new CryptoCity zone where users can legally spend digital assets.

Join the community and don't miss a crypto giveaway.

Subscribe for updates by e-mail with the latest research reviews, airdrop news, reward programs, event updates about upcoming airdrops.

By entering your email address you are accepting our Terms & Conditions and Privacy & Cookie Policy.

Airdrops' logo

Copyright © 2025 by Airdrops.com

All rights reserved.

From our website
Legal

Nothing contained on our website constitutes financial, legal, tax or other advice, nor should any investment or any other decisions be made solely based on the content of Airdrops.com. You should seek independent advice from a qualified expert before making any investment decision. Please see Terms of Use for further information.

Copyright © 2025 by Airdrops.com

All rights reserved.