Wintermute: Malicious contract "CrimeEnjoyor" appears after Pectra upgrade, suspected phishing without profit

Odaily News Wintermute pointed out that since the Ethereum Pectra upgrade launched EIP-7702, a large number of malicious contracts named "CrimeEnjoyor" have appeared, taking advantage of the mechanism by which users authorize wallet permissions to smart contracts, attempting to scan and transfer funds, but the attackers have not made any profit so far. More than 97% of EIP-7702 authorizations point to the same copy code, suspected to be an automatic coin theft tool. The attacker invested about 2.88 ETH for 79,000 address authorizations, and the largest address processed more than 52,000 authorizations, but there has been no actual profit so far. Although this attack method did not work, it exposed the security risks of EIP-7702. (CoinDesk)