Dissecting Payload-based Transaction Phishing on Ethereum
Zhuo Chen
Network and Distributed System Security (NDSS) Symposium 2025 · Day 3 · Phishing & Fraud 2
In a revealing presentation at the NDSS Symposium, Zhuo Chen of Zhejiang University unveiled critical research dissecting **payload-based transaction phishing** on the Ethereum blockchain. This talk shines a spotlight on a sophisticated and increasingly prevalent attack vector that has contributed to over $3 billion in crypto losses in 2023 alone. Unlike simpler scams, payload-based phishing leverages the very architecture of Ethereum's transaction mechanism, exploiting a fundamental blind spot between user perception and the underlying smart contract interactions.
AI review
Competent academic taxonomy of Ethereum transaction phishing with a functional detection system and real measurement numbers. The work is thorough and the dataset is credible, but the attack categories themselves aren't novel to anyone who's been tracking web3 security — ice fishing, address poisoning, and malicious approvals have been documented and exploited at scale for years. Solid NDSS paper; not a DEF CON headliner.