1. Upgraded Threat Capabilities
2. Enhanced Features and Evasion Tactics
3. A Brief History of Angel Drainer

The notorious phishing toolkit Angel Drainer has resurfaced with a revamped version called AngelX.

Upgraded Threat Capabilities

Launched on August 31, AngelX represents a significant upgrade from its predecessor. The new version is designed to exploit newer and less secure blockchains, such as The Open Network (TON) and the Tron network. According to blockchain security firm Blockaid, AngelX has already made a disturbing impact by deploying over 300 malicious decentralized applications (dApps) within just four days of its launch.

Enhanced Features and Evasion Tactics

AngelX boasts an improved user experience (UX) and control panel, which enable scammers to create highly customizable and sophisticated malicious dApps. This upgraded interface facilitates the development of tailored phishing applications that can easily bypass existing security measures. According to Blockaid, many of the malicious dApps developed using AngelX have successfully evaded detection by other security tools, complicating efforts by security professionals to identify and address these threats. Since its launch, Blockaid has detected around 150 new scams associated with AngelX.

A Brief History of Angel Drainer

The original Angel Drainer, which was linked to over $25 million in stolen crypto assets, had reportedly ceased operations on July 16 after its developers’ identities were potentially uncovered. However, the reemergence of Angel Drainer in the form of AngelX has reinvigorated concerns within the crypto community. The earlier version of Angel Drainer was notorious for draining crypto wallets by deceiving users into approving fraudulent token transactions. The resurgence of Angel Drainer comes at a time when phishing scams are surging. According to data from ScamSniffer, August saw nearly $63 million lost to phishing attacks, a 215% increase from the previous month.

The return of the phishing toolkit AngelX raises serious concerns within the crypto community. Despite efforts to combat phishing attacks, new and improved versions of such tools represent significant threats, especially for less secure blockchains.