Sweeper bot on Metamask wallet and others (solved)

#1 Y3llowl4bs Hackers - Blog - Funds Recovery News - Sweeper bot on Metamask wallet and others (solved)
blog9

Sweeper bot on Metamask, Coinbase, Trust wallet and others (solved)

sweeper bot on metamask

Introduction

It all started when I was working on a smart contract for a new product. I didn’t realize it at the time, but my personal wallet keys were being leaked on GitHub. A hacker found my wallet address and immediately emptied it of its contents. Thankfully, I had staked some ETH into pools, so there was still money left in those accounts. But it wasn’t enough to cover my rent or bills.

So what is a sweeper bot, anyway?

Also known as a sweeper bot, a sweeper is an automated bit of code (also called a script) that can be assigned to a blockchain address, to perform actions relating to that account automatically, such as automatically sweeping assets deposited into the account to another address.

Sweeper bots are usually designed in such a way that they monitor the hacked wallet address incoming transactions in the mem pool before they get published on the mainnet. Therefore, making withdraws to the attacker’s wallet faster than you can even notice what happened.

It monitors your hacked account and withdraws your funds before you can make them available to spend again. It’s basically an ATM for thieves. All they have to do is sit back and wait for their money to come in.

I got an idea: what if we could bundle transactions together? If we could do this quickly enough, we could beat a sweeper bot at its own game!

Sweeper bots are a common occurrence in the blockchain space. As soon as you have a wallet, it’s only a matter of time before someone tries to hack it. So I was not surprised when my wallet was hacked and sweeper bots attached themselves to my account.

What can be done about this? How do we stop hackers from taking our crypto?

The best way to avoid being hacked is not to click on links in emails or social media. If you receive a message from someone claiming to be a big cryptocurrency exchange, do not go to the link and don’t download any apps for example MetaMask.

The safest way of holding your private key is by using hardware wallets such as Ledger Nano S and Trezor.

Hardware wallets are like USB drives that contain your private keys and they need to be physically connected to your computer when sending transactions or storing funds offline (cold storage).

Hardware wallets are expensive but well worth the investment if you don’t want the headache of losing all your coins due to a hack or phishing scam like this one.

Other precautionary measures include but are not limited to:

  • Never manually enter key phrase on a website or app
  • Use official apps and websites
  • install antivirus

Realistic Pop-up

The pop-up is quite realistic, it actually looks like an official warning to get you to click. Note that the correct address for the site starts with https://www.myetherwallet.com/ but with this sweeper bot you connect to an insecure HTTP address.

If you look at the green address bar at the top right of your browser window in Metamask or Trust wallet (or any other web3 enabled browser) you will see that when visiting a secure website it starts with HTTPS:// When visiting a non-secure website it starts with HTTP://

After clicking “Sign In” you are redirected to this page where you are asked for your private key or JSON file. This is how you get your wallet hacked by the sweeper bot, by sending your details directly to the hacker or hacker group

When you click on the link, you will be asked to sign in with your private key. If you do that, the hacker can access your wallet and steal all of your cryptocurrency.

It is a scam! Do not trust them! Just because they promise to return your funds doesn’t mean they really will; they may just take them for themselves once they have access to them.

So here’s my question to you MetaMask Team and others using similar Wallets.

Is it possible to remove a sweeper bot in my Ethereum address?

bitcoin recovery expert

No, it is not possible to remove a bot attached to the wallet because they already have your private keys, and with that, they can reattach the bot even if you manage to revoke their initial access.

What we do is to rescue all the funds in the wallet before it gets withdrawn.

I knew that the best way to beat this sweeper bot would be to make sure that my transaction was included in the next block before theirs did.

So I started looking for ways to speed up the process.

That’s where front running comes in handy, a way to use your own money as collateral in order to guarantee inclusion in blocks as they’re mined.

FlashBots are contracts that allow you to bundle multiple transactions into one single transaction which has higher gas prices and therefore gets confirmed on the mem pool faster than the sweeper bot.

What do you mean by bundled transactions?

It’s basically a transaction that is created by combining multiple transactions together. This can be done by manually calculating and creating multiple transactions, but there are also tools available like Flashbot which can automatically create these bundles for you.

The idea behind using Flashbot is that it will allow you to create your bundle of transactions and then send them off to be mined by miners who are willing to accept those bundles at a higher gas price than normal.

This means that since these miners are willing to pay more for their fees, they’ll get priority over other transactions when it comes time for their blocks to be mined.

Conclusion

Hopefully, reading this made you more aware of the threat of sweeper bots. And if you’re an Ethereum developer, hopefully, this gave you a better idea of how to work around these types of bots!

Tags :
Share :

administrator

Related Post

trace stolen cryptocurrency, Recover Money From a Ponzi scheme, Imposter Scam, recover money from an imposter scam, Recover Money Back From A Romance Scam, Recover money back from Covid 19 scams, How To Spot Covid-19 Scams, How To Avoid Covid-19 Scams, Recover Money From Loyalty scams, Covid, Different Covid-19 Scams, Shitcoins Club Review
Funds Recovery News

How To Easily Trace stolen cryptocurrency using Y3llowl4bs

August 12, 2022
crypto recovery solution 1
Funds Recovery News

Crypto Recovery Solutions For Investment Scam

October 7, 2021

15 Comments

  • Reply
    Antonia Müller March 6, 2023

    Y3llowl4bs heeft me gered van een nachtmerrie toen mijn Metamask-portemonnee werd gehackt door een sweeper bot. Ik raad hun professionele diensten ten zeerste aan!

  • Reply
    Viktoriya Ivanova March 4, 2023

    14ETH saved all thanks to Y3L4Bs. Y3LLOWL4BS provided exceptional service when I needed help with my Metamask account. Their team was friendly, professional, and clearly experts in their field. I felt confident in their ability to resolve the issue, and they did so quickly and efficiently. I’m so grateful to have found them

  • Reply
    Sebastian Weber February 10, 2023

    Als je je crypto-activa wilt beschermen tegen sweeper bots op Metamask, hoef je niet verder te zoeken dan Y3l4bs. Hun expertise is ongeëvenaard.

  • Reply
    Lorenzo van der Meer January 22, 2023

    Y3LLOWL4BS.COM heeft me een eenvoudige en effectieve oplossing geboden om een sweeper bot uit mijn Metamask-portemonnee te verwijderen. Aarzel niet om hen in te huren!

  • Reply
    Very Useful Private Investigator Research Resources - #1 Y3llowl4bs Hackers December 15, 2022

    […] investigators. However, the resources are helpful for police officers, crime scene investigators, forensic experts, and others who work in or with the investigation […]

  • Reply
    Joe Kingston October 25, 2022

    I had heard about this and thought I would be safe. Unfortunately, I was wrong. On July 26th, 2022, I logged on to my Metamask wallet to check on my crypto balance and was shocked to see that over $60k in coins had disappeared from my account. With only minutes to respond and report this theft, it was all but gone by the time I got a hold of support. It was an eye-opening experience for me because although I am all too aware of everything that could go wrong with cryptocurrency, I didn’t think that even something as basic as using a browser based wallet could have security holes like this one did.

  • Reply
    Elias Santos October 25, 2022

    I feel like a fool right now, I have no idea how this happened. I have been using Metamask for over 2 years but I’ve never been hacked. The hacker breached my wallet by using Sweeper bot. They had my seed phrase so they could get access to my funds as well as my private key and use it to change my account balance

  • Reply
    Keri Levine October 25, 2022

    I got hacked! I’m on a mission to find justice for the stolen funds and to prevent others from having their crypto stolen. The first step is reporting the theft and getting a police report, so that Coinbase can investigate.

  • Reply
    Sylvia Morgan October 25, 2022

    Someone took 150 BNB (AUD64932.81) from my Metamask account in 4 separate transactions. The hacker used the Sweeper bot to sweep my wallet. I have no idea how they did it; My wallet has never been compromised before, but now I lost all my savings because of it.

  • Reply
    Jarvis Vanice October 25, 2022

    I have never felt more violated, angry, helpless, and incredibly stupid. These funds were the result of months of saving and had been carefully distributed in multiple tokens. And now they’re gone.

  • Reply
    Josephtoums October 23, 2022

    I was talking to a friend from Venezuela and suddenly it said that she had been hacked. I asked her how she feels about it. She told me that she feels lost and sad because everything is happening so quickly. This week she managed to get her airline tickets but it doesn’t seem to be enough anymore. She has also gone through a lot because of the currency crisis in Venezuela.

  • Reply
    Alan October 23, 2022

    When you are using a Metamask wallet, it is extremely easy to get hacked by a sweeper bot. I was lucky enough to have been with my friend in person when this happened to me on Saturday night. We were at our favorite restaurant eating and laughing when out of nowhere my phone froze. I tried unlocking it but nothing happened, then the screen went black. After what seemed like forever, the screen came back on with a message that I had lost access to my account and any funds there. Luckily I had kept half of my Ether as collateral on another address so I was only out $200 dollars.

  • Reply
    Paul Domm October 23, 2022

    My sister has been a holder for over 5 years now, and she has never lost a single coin. She always shopped at trusted merchants and was careful with her private keys; still, she was hacked by a sweeper bot last week and lost all her ETH. It is so sad to see her go through such paranoia that comes from being hacked, especially someone who has always been careful like this.

  • Reply
    Nick October 23, 2022

    I woke up to my Metamask wallet being hacked and lost a lot of ether. How did this happen? Was it my fault? What can I do to prevent myself from ever being hacked again?

  • Reply
    LisaUrifs October 23, 2022

    A few weeks ago I was hacked by a sweeper bot on Metamask wallet. Even though it was my fault for not updating it to the new version, I still felt sad, violated and paranoid having my account taken over.

Leave a Reply

Your email address will not be published. Required fields are marked *

fb logo
recover dogecoin from a scam
recover ethereum from a scammer
hire a hacker to hack iphone
hire a hacker to hack snapchat
hire a hacker to hack a windows computer
error: Content is protected !!