Silent wallet leaks raise new crypto security threats on EVM networks
A total loss of over $107,000 has already been identified through chain analysis. No specific wallet provider or exploit vector has yet been identified by investigators. Attackers are pocketing small amounts of less than $2,000, delaying detection and spreading the threat widely.
A new on-chain alert has drawn attention to a discreet but widespread crypto theft campaign affecting hundreds of users on EVM-compatible blockchains.
The warning, shared by Blockchain Investigator ZachXBTIt points to a coordinated wallet drain operation that has already resulted in a total loss of over $107,000.
What distinguishes this phenomenon is not the amount of individual theft, but how it is carried out. Rather than targeting larger scales, the attacker appears to be siphoning relatively small amounts of money from multiple wallets.
Most losses remain below $2,000 per address, allowing the activity to spread quietly without immediate attention from victims or surveillance systems.
A subtle pattern emerges
The affected wallets traverse multiple EVM-compatible networks, ensuring that they are not limited to a single chain or ecosystem.
Transaction data reviewed by investigators shows consistent timing and similar transfer rates, indicating a concerted effort rather than isolated events.
So far, no specific wallet provider, decentralized application, or smart contract vulnerability has been identified as an entry point. There is no official confirmation linking the leaks to malicious software updates or phishing campaigns.
The thing that was stolen is that the stolen money is going to the relevant addresses, for which an actor or a closely related group is responsible.
This lack of a clear exploitation vector has complicated efforts to contain the issue.
Without knowing how access is achieved, users and developers are left with limited quick options beyond extreme caution.
Why small losses create big risks
While the financial impact on individual users may seem limited, the method itself raises broader concerns.
By spreading the theft across multiple wallets, attackers can delay detection and reduce the likelihood of rapid coordinated responses.
Victims may notice their money is missing days or weeks later, if not at all.
The presentation highlights the ongoing risks facing self-governing users interacting with multiple chains, protocols and permissions.
Each interaction can expose the surface environment to risk, especially in the connected EVM ecosystem.
The timing of the event has caused anxiety in the crypto community.
In the year By the end of 2025, following a series of security breaches, it will renew investigations into wallet approvals, private key management and cross-chain activity.
Exploitation remains a constant threat.
This section aligns with ongoing security issues in the digital asset sector.
Blockchain security company information PeckShield It shows that December 26 saw major crypto exploits, resulting in losses of around $76 million.
That total is significantly lower than November's $194 million, but it confirms continued exploitation.
One of the most famous events of this period TrueT WalletIt has disclosed a security issue related to a specific version of a browser extension.
The breach that occurred during Christmas resulted in a loss of 7 million dollars.
The company has since introduced reforms to compensate affected users and strengthen verification and compensation processes.
The ZachXBT wallet leak issue is still developing, with funds movements continuing to be monitored.
There is currently no confirmed explanation for how the wallets were breached, and no product or service has been publicly blamed.
