New Crypto Theft Wave Hits EVM Chains: ZachXBT Urges Enhanced Security Amid $107K Losses

Renowned blockchain investigator ZachXBT has issued a critical warning regarding a burgeoning wave of crypto wallet thefts targeting EVM-compatible chains. This insidious campaign has already impacted hundreds of users, resulting in total losses exceeding $107,000. What makes this attack particularly concerning is its low-profile, high-frequency nature: individual losses are consistently reported under $2,000, a tactic likely designed to evade immediate detection and prolong the scheme. As the root cause remains elusive in early 2026, ZachXBT is imploring all users to significantly bolster their security protocols during the ongoing investigation.

Echoes of Past Breaches: The Trust Wallet Precedent

This latest series of attacks bears an unsettling resemblance to recent high-profile security breaches, notably the Trust Wallet vulnerability discovered in December 2025. In that incident, ZachXBT was instrumental in initially identifying over $600,000 stolen from hundreds of users, a figure that tragically escalated to $7 million. The Trust Wallet breach was traced back to a sophisticated supply chain attack on version 2.68 of its browser extension. Malicious code was reportedly injected, allowing seed phrases to be stolen the moment wallets were unlocked, affecting assets across Bitcoin, Solana, and various EVM networks. Funds were subsequently siphoned to exchanges like ChangeNOW and KuCoin, prompting Binance founder CZ to pledge full compensation for affected users.

Identifying Attack Vectors and Safeguarding Assets

The recurring pattern of numerous small-value wallet drains points strongly towards common attack vectors prevalent in the EVM ecosystem, such as sophisticated phishing scams, malicious browser extensions, or compromised decentralized applications (dApps). Blockchain security firms like SlowMist have previously highlighted similar Trust Wallet incidents, attributing them to potential infiltrations of developer devices or code repositories. To safeguard assets, experts consistently advise users to meticulously verify the versions of their browser extensions, exercise extreme caution by avoiding suspicious links, and — for significant holdings — prioritize the use of robust hardware wallets.

The Gravity of the Threat and Future Outlook

ZachXBT’s impeccable track record lends significant weight to these warnings. The acclaimed on-chain detective has a history of uncovering multi-billion dollar scams, including a staggering $243 million Bitcoin theft and major North Korean hacking operations. While the precise motivations behind this current wave of EVM attacks are still under investigation, it unequivocally underscores the persistent and evolving vulnerabilities within the decentralized finance (DeFi) landscape. As authorities and security researchers continue their probe, collective community vigilance, prompt software updates, and the proactive utilization of on-chain monitoring tools will be paramount in mitigating further damage and protecting users from future threats.