[]
BTC$95,270-0.83%ETH$2,660.35-3.31%XRP$2.55-4.31%USDT$1.00-0.07%BNB$644.90-3.49%SOL$168.92-6.10%USDC$1.00-0.00%DOGE$0.25-3.86%ADA$0.75-7.29%STETH$2,659.11-3.43%TRX$0.24-1.39%WBTC$95,192-0.57%LINK$17.78-7.76%WSTETH$3,178.82-3.38%XLM$0.32-4.56%LTC$129.344.38%AVAX$23.43-7.10%SUI$3.05-6.06%TON$3.66-3.38%LEO$9.78-0.15%SHIB$0.00001523-3.74%USDS$1.00-0.04%HBAR$0.21-3.69%HYPE$23.91-6.73%WETH$2,660.02-3.36%OM$7.593.59%DOT$4.75-3.06%BCH$315.52-3.24%USDE$1.00-0.12%UNI$9.53-3.99%BGB$4.69-7.26%WEETH$2,819.6-3.50%XMR$235.22-0.86%WBT$27.340.35%PEPE$0.00000926-9.14%AAVE$250.57-5.84%ONDO$1.18-4.42%NEAR$3.12-4.80%MNT$1.05-1.34%DAI$1.00-0.02%SUSDS$1.03-1.43%APT$5.60-7.14%TRUMP$16.41-4.74%ICP$6.74-5.06%TAO$382.745.18%ETC$20.04-4.79%OKB$49.33-3.17%GT$22.27-3.70%TKX$34.314.53%KAS$0.10-3.72%POL$0.30-6.68%VET$0.03-4.43%CBBTC$95,312-0.92%CRO$0.08-4.51%ALGO$0.26-6.38%RENDER$4.15-5.97%FIL$3.22-6.36%FDUSD$1.000.11%ARB$0.46-8.17%ATOM$4.56-6.37%JUP$0.72-12.06%FET$0.73-4.62%LBTC$95,316-0.40%S$0.60-3.41%OP$1.09-9.86%FTN$3.960.68%WETH$2,654.83-3.68%TIA$3.00-5.15%LDO$1.75-6.39%RSETH$2,760.45-3.31%KCS$12.040.01%XDC$0.09-5.88%QNT$94.77-2.61%SOLVBTC$95,106-0.91%INJ$13.78-8.97%RETH$2,996.92-3.43%BNSOL$174.65-6.15%ENA$0.42-7.70%NEXO$1.33-1.44%STX$0.87-6.26%IMX$0.74-9.79%GRT$0.13-8.08%THETA$1.25-6.55%METH$2,806.58-3.63%MOVE$0.51-7.00%RAY$4.22-10.76%BONK$0.00001545-8.13%FLR$0.02-3.53%WLD$1.13-7.03%USD0$1.00-0.03%DEXE$18.180.71%SEI$0.22-4.79%JASMY$0.02-5.04%SOLVBTC.BBN$94,291-1.52%GALA$0.02-3.44%TEL$0.01-6.61%EOS$0.61-4.71%MKR$1,101.695.02%FLOKI$0.00009184-4.85%XTZ$0.85-4.88%

Advertisement

Scammers Get Scammed as DogWifTools Gets Exploited for $10 Million

The token bundling tool drained users' hot wallets, hardware wallets, and centralized exchange accounts.
By: Squiffs • January 28, 2025
Scammers Get Scammed as DogWifTools Gets Exploited for $10 Million

The tables were turned on memecoin scammers today as DogWifTools, a token bundling tool commonly used for malicious memecoin launches, was exploited and drained millions from its users.

The exploit extended beyond just hot wallets, as the malicious actors infiltrated users' devices, stealing funds from hot wallets, cold wallets, and even centralized exchanges, leading to more than $10 million being stolen overall.

DogWifTools is used to bundle token launches and automate market-making.

Bundling is a process through which a single entity automates multiple wallets to snipe small amounts of a token the entity is launching. This process is used to mask supply control and is commonly used by scammer groups for memecoin launches.

Bundling allows groups or individuals to obtain large portions of a token’s supply across many wallets, making it more difficult for the average user to understand that there is a supply concentration. Many bundled launches are designed to trick users into thinking the token is safe, while the single entity dumps its supply on unsuspecting buyers. This scam method is also commonly referred to as farming.

It is being reported that the tool installation had been keylogging users’ hardware devices to gain access to their private keys, email credentials and passwords. Some users even reported that the hackers used personal ID pictures stored on their computers to create false centralized exchange accounts in the victim’s name to cash out user funds.

A member of the DogWifTools team addressed the situation in the Discord server and said, “A malicious third-party actor gained unauthorized access to our GitHub repository through a GitHub token. We believe they were able to get this token by reversing our compiled software.”

Despite the loss of funds, crypto Twitter was quick to kick the victims while they were down, considering the use case for DogWifTools.

Onchain sleuth ZachXBT was quick to chime in, “Hopefully the hackers leak an entire db with info of the users (scammers).”

Advertisement

Get an edge in Crypto with our free daily newsletter

Know what matters in Crypto and Web3 with The Defiant Daily newsletter, Mon to Fri

90k+ Defiers informed every day. Unsubscribe anytime.