According to a report by TechFlow on February 9th, blockchain security company Scam Sniffer warned that the number of victims of signature phishing attacks in January 2026 increased by 207% compared to December, with a total of 4,700 wallets stolen and losses totaling $6.27 million.
Signature phishing attacks refer to attackers inducing users to sign off-chain messages on malicious decentralized applications. Seemingly harmless requests may actually authorize unlimited token spending or non-fungible token transfers, allowing attackers to empty the victim's wallet.
Researchers point out that the significant reduction in transaction fees following the Ethereum Fusaka upgrade has made attacks such as address poisoning more attractive. Blockchain researcher Andrey Sergeenkov found a surge in new address creation last month, with 2.7 million new addresses added in a single week, approximately 170% higher than normal.
