Key notes
- CZ offers wallet-level blocks and UI filters to stop “poisoned” addresses and copy-paste traps.
- Case in point: an investor mistakenly sent approximately $50 million USD to a similar address; the funds were quickly divided and hidden.
- Binance Security Tracks Millions of Poisoned Addresses; Phishing losses remain high across the industry.
Co-founder of Binance Changpeng “CZ” Zhao urged crypto wallets to automatically detect and block address poisoning scams. He proposed industry-wide blacklists and UI filtering after an investor mistakenly sent $50 million in USDT at a spoofed address last week.
In an article titled “Let’s eradicate poison scams” Zhao said wallets should query known “poison addresses,” warn or block users, and hide zero-value spam that clutters histories. He added that Binance Wallet already carries out such checks.
What’s Behind Address Poisoning Scams
A “poison wallet”, or address poisoning scam, is a cryptographic trick in which attackers send small amounts of crypto (dust) from a fake address that look at like a frequent contact’s address on your wallet, hoping you’ll copy the fake one later and send them funds instead of the real person. It works by exploiting user habits, forcing you to accidentally send crypto to the scammer’s address that is just one character different from the real one, making it difficult to spot.
This new surge follows a highly publicized loss on December 19when a whale copied a similar address from their transaction history and transferred 49,999,950 USDT to the attacker. On-chain records show that funds leave the victim’s wallet and arrive at an address marked as phishing. Security reports indicate that the thief quickly converted USDT and spread profits across multiple wallets, with some transport routed through Tornado Cash to cover their tracks.
How to lose $50 million in less than an hour. This is one of the biggest chain scam losses we’ve seen recently.
A single victim lost $50 million in $USDT to an address poisoning scam. The funds had arrived less than an hour earlier.
The user first sent a small test transmission to the correct address. Minutes… pic.twitter.com/Umsr8oTcXC
-Web3 Antivirus (@web3_antivirus) December 19, 2025
Cointelegraph’s recap notes similar cases this year and says Binance’s security team cataloged ~15 million Poisoned addresses on networks via an internal detection algorithm.
The $50 million incident also comes amid a broader surge phishing losses. Snorting scam account $7.77 million in losses out of 6,344 victims in November alone, while CertiK estimates $3.3 billion in crypto losses in 2025, with phishing and wallet compromises accounting for a significant portion.
The Skynet Hack3d 2025 report is here.
$3.35 billion lost. More than 700 incidents. New attack vectors. Key trends.
Get the most in-depth look at Web3 security in 2025, from exploits to insights.
Read the full report👇
– CertiK (@CertiK) December 23, 2025
What CZ wants wallets to do
-
Blacklisted queries: Check recipients against real-time shared lists of poison addresses and block Or warn before users hit “send”.
-
Spam/dust filtering: Hide tiny “dust” transfers this poison is aimed at stories.
-
Important Warnings: Default security prompts when copying from history or when the first/last characters match a known spoofing pattern.
Why it matters
Wallet-side controls are a software fix for human factor exploit. If widely adopted, blacklist controls and user interface changes could neutralize one of the most common and high-impact crypto scams without altering base layer protocols.
following
Disclaimer: Coinspeaker is committed to providing unbiased and transparent reporting. This article is intended to provide accurate and current information, but should not be considered financial or investment advice. Because market conditions can change quickly, we encourage you to verify the information for yourself and consult a professional before making any decisions based on this content.
Yana Khlebnikova joined CoinSpeaker as an editor in January 2025, following previous stints at Techopedia, crypto.news, Cointelegraph and CoinMarketCap, where she honed her expertise in cryptocurrency journalism.
Yana Khlebnikova on LinkedIn
