Bitcoin Forum>Alternate cryptocurrencies>Altcoin Discussion
Pages:
Author

Topic: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP (Read 512 times)

lamby
full member
Activity: 223
Merit: 100
SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 20, 2017, 02:25:18 AM
#22
Quote from: cjmoles on November 19, 2017, 05:25:47 PM
Quote from: lamby on November 19, 2017, 11:30:31 AM
Quote from: styca on November 19, 2017, 03:28:55 AM
You are absolutely doing the right thing by asking the question. Whenever you join an airdrop, download a wallet etc... in short whenever you interact with something new, it is always important to determine whether it is safe, and how you could possibly make yourself vulnerable. Eth and crypto in general are still very young and by no means fully explored. Always be vigilant!

Thank you very much. Nice advise to get a new wallet for such transactions. Problem though is that they ask for aboutique 5 or more minimum previous transactions on the wallet to qualify for such airdrops.

Here's a few sources describing what I eluded to above ---> https://themerkle.com/hacker-uses-malicious-smart-contract-to-trick-etherdelta-users/ AND ---> https://medium.com/@rleshner/security-vulnerability-etherdelta-10556d6e72a

There were other more in depth articles which exposed the actual smart contract code that made this exploit possible but they seem to have been wiped, probably to mitigate similar attacks.



I learnt so much going through your links. Have also confirmed my suspicions that you can never tell what is written on the other side. of the contract especially for a non tech like me. It's only wise to be cautious.
Going forward I will have to avoid clicking on links from unknown sources or even google.


Thanks bro
cjmoles
legendary
Activity: 1176
Merit: 1017
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 05:25:47 PM
#21
Quote from: lamby on November 19, 2017, 11:30:31 AM
Quote from: styca on November 19, 2017, 03:28:55 AM
You are absolutely doing the right thing by asking the question. Whenever you join an airdrop, download a wallet etc... in short whenever you interact with something new, it is always important to determine whether it is safe, and how you could possibly make yourself vulnerable. Eth and crypto in general are still very young and by no means fully explored. Always be vigilant!

Thank you very much. Nice advise to get a new wallet for such transactions. Problem though is that they ask for aboutique 5 or more minimum previous transactions on the wallet to qualify for such airdrops.

Here's a few sources describing what I eluded to above ---> https://themerkle.com/hacker-uses-malicious-smart-contract-to-trick-etherdelta-users/ AND ---> https://medium.com/@rleshner/security-vulnerability-etherdelta-10556d6e72a

There were other more in depth articles which exposed the actual smart contract code that made this exploit possible but they seem to have been wiped, probably to mitigate similar attacks.

lamby
full member
Activity: 223
Merit: 100
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 11:30:31 AM
#20
Quote from: styca on November 19, 2017, 03:28:55 AM
You are absolutely doing the right thing by asking the question. Whenever you join an airdrop, download a wallet etc... in short whenever you interact with something new, it is always important to determine whether it is safe, and how you could possibly make yourself vulnerable. Eth and crypto in general are still very young and by no means fully explored. Always be vigilant!

Thank you very much. Nice advise to get a new wallet for such transactions. Problem though is that they ask for aboutique 5 or more minimum previous transactions on the wallet to qualify for such airdrops.
styca
sr. member
Activity: 1078
Merit: 354
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 03:28:55 AM
#19
You are absolutely doing the right thing by asking the question. Whenever you join an airdrop, download a wallet etc... in short whenever you interact with something new, it is always important to determine whether it is safe, and how you could possibly make yourself vulnerable. Eth and crypto in general are still very young and by no means fully explored. Always be vigilant!
lamby
full member
Activity: 223
Merit: 100
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 03:00:35 AM
#18
Quote from: cjmoles on November 19, 2017, 01:52:08 AM
A few months back a hacker was able to exploit the etherDelta exchange (it's a decentralized exchange which operates via eth contract calls).  They used the etherDelta contracts themselves to run the code in their black hat contract. The etherDelta contracts interacted with the black hat contracts which then transferred private key information from the client's wallets thru their browsers and back to the black hat files.

In other words, be careful interacting with ethereum contracts ---> read the code before you interact with the contract.  If the code looks peculiar ---> ask questions before you interact with it. Remember, ethereum is a turing complete platform and we are still in a relatively new and under explored realm.  Careful!

Thanks. My thoughts exactly. Ethereum is completely new and unexplored realm. That's why I am afraid someone would have found a way to exploit a loophole.

I remember an ico that failed to reach the hardcap and we were asked to send 0 eth to the contract address to retrieve our investment.
Hence my fear that I send 0 eth and my assets find their way out
cjmoles
legendary
Activity: 1176
Merit: 1017
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 01:52:08 AM
#17
A few months back a hacker was able to exploit the etherDelta exchange (it's a decentralized exchange which operates via eth contract calls).  They used the etherDelta contracts themselves to run the code in their black hat contract. The etherDelta contracts interacted with the black hat contracts which then transferred private key information from the client's wallets thru their browsers and back to the black hat files.

In other words, be careful interacting with ethereum contracts ---> read the code before you interact with the contract.  If the code looks peculiar ---> ask questions before you interact with it. Remember, ethereum is a turing complete platform and we are still in a relatively new and under explored realm.  Careful!
jackolinyoko
member
Activity: 204
Merit: 10
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 01:47:08 AM
#16
Sending Eth to an aidrop is a risky move,but if you trust the aidrop you are joining then go for it.
hua_hui
legendary
Activity: 1386
Merit: 1016
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 01:43:44 AM
#15
By sending 0 eth, it does not have access to your account. There is no program that can access to your account unless they have the seed words, which in turn the legit program that you are using to send transaction should not give. There are a few ico doing this and one of the most successful and popular ICO is blockmason. The reason for this act is very simple, you create a transaction that has a link from your eth address to the smart contract address, this will invoke a certain function in the smart contract to register your eth in their database. If we are talking about airdrop program, there will be another function in the smart contract to distribute the tokens to the registered database in the smart contract.
kqyyzmlc
member
Activity: 80
Merit: 10
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 01:34:39 AM
#14
Quote from: lamby on November 19, 2017, 01:24:45 AM
Quote from: asayoyaasa on November 18, 2017, 07:09:22 PM
Quote from: carriebee on November 18, 2017, 06:25:17 PM
Yes those participants who send 0eth definitely will not get scam by following instructions. But it will less your eth, when you send 0 eth it will automatic send the token. But ofcourse in every airdrop we need to be careful in order to not get hacked.
yeah you dont want take a risk lose all your asset to get few dollars right xD better carefull than regret it later. stay safe  Wink

That's the point. Why should I risk all my assets because I want to earn some few Xtra coins which maybe completely worthless in the first place
Well, it is a very unprovoked airdrop and has the potential to expose personal privacy and security issues. I think the drop should be fair, not to say that setting some bizarre conditions does not seem plausible.
lamby
full member
Activity: 223
Merit: 100
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 01:24:45 AM
#13
Quote from: asayoyaasa on November 18, 2017, 07:09:22 PM
Quote from: carriebee on November 18, 2017, 06:25:17 PM
Yes those participants who send 0eth definitely will not get scam by following instructions. But it will less your eth, when you send 0 eth it will automatic send the token. But ofcourse in every airdrop we need to be careful in order to not get hacked.
yeah you dont want take a risk lose all your asset to get few dollars right xD better carefull than regret it later. stay safe  Wink

That's the point. Why should I risk all my assets because I want to earn some few Xtra coins which maybe completely worthless in the first place
lamby
full member
Activity: 223
Merit: 100
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 19, 2017, 01:21:03 AM
#12
Quote from: carriebee on November 18, 2017, 06:25:17 PM
Quote from: Celebrity on November 18, 2017, 06:20:30 PM
Quote from: lamby on November 18, 2017, 05:25:17 PM
I have come across a few airdrop forms asking you to send 0eth to a contract to receive coins.

My question is
If this is a kind of scam.
What are the implications of sending the zero eth to the contract address.

Will be very grateful if someone here can do well to enlighten me

They can't scam you by getting the Ethereums in your sender wallet, if you mean this kind of thing. They do this to see if you're the one deserving that airdrop. But, I'm not saying they're not a scam thing. What I'm saying they can't scam you with this method.
Yes those participants who send 0eth definitely will not get scam by following instructions. But it will less your eth, when you send 0 eth it will automatic send the token. But ofcourse in every airdrop we need to be careful in order to not get hacked.

Thank you.
Hacked should have been the word to use rather than scammed.
No one knows how the contract was written. There is the small chance it's all meant to have your account hacked.
hieu81
sr. member
Activity: 518
Merit: 250
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 07:43:00 PM
#11
Quote from: lamby on November 18, 2017, 05:25:17 PM
I have come across a few airdrop forms asking you to send 0eth to a contract to receive coins.

My question is
If this is a kind of scam.
What are the implications of sending the zero eth to the contract address.

Will be very grateful if someone here can do well to enlighten me
I do not think so, They want to check the account to avoid a user multiple accounts, and Coin has grown or not depends on the developer and the interest of the community.
mhine07
full member
Activity: 560
Merit: 105
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 07:15:40 PM
#10
Quote from: lamby on November 18, 2017, 05:25:17 PM
I have come across a few airdrop forms asking you to send 0eth to a contract to receive coins.

My question is
If this is a kind of scam.
What are the implications of sending the zero eth to the contract address.

Will be very grateful if someone here can do well to enlighten me
it is possible to he a scam , why would anyone send eth to a contract , which is an airdrop. Airdrop meant to be a free , as you send an etherium to it , it wouldn't be an airdrop anymore , because you just pay what will they honna give you in return.
asayoyaasa
copper member
Activity: 648
Merit: 159
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 07:09:22 PM
#9
Quote from: carriebee on November 18, 2017, 06:25:17 PM
Yes those participants who send 0eth definitely will not get scam by following instructions. But it will less your eth, when you send 0 eth it will automatic send the token. But ofcourse in every airdrop we need to be careful in order to not get hacked.
yeah you dont want take a risk lose all your asset to get few dollars right xD better carefull than regret it later. stay safe  Wink
aanbudi
full member
Activity: 140
Merit: 100
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 06:37:42 PM
#8
I just found out the scheme. To my knowledge, there is no problem if we just send 0 eth. Maybe it's just a verification requirement to get you qualified for the person receiving the Airdrop. And also to avoid multiple accounts for Airdrop to run fair. Of course, it's not scam Smiley
carriebee
sr. member
Activity: 1148
Merit: 251
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 06:25:17 PM
#7
Quote from: Celebrity on November 18, 2017, 06:20:30 PM
Quote from: lamby on November 18, 2017, 05:25:17 PM
I have come across a few airdrop forms asking you to send 0eth to a contract to receive coins.

My question is
If this is a kind of scam.
What are the implications of sending the zero eth to the contract address.

Will be very grateful if someone here can do well to enlighten me

They can't scam you by getting the Ethereums in your sender wallet, if you mean this kind of thing. They do this to see if you're the one deserving that airdrop. But, I'm not saying they're not a scam thing. What I'm saying they can't scam you with this method.
Yes those participants who send 0eth definitely will not get scam by following instructions. But it will less your eth, when you send 0 eth it will automatic send the token. But ofcourse in every airdrop we need to be careful in order to not get hacked.
Celebrity
sr. member
Activity: 420
Merit: 250
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 06:20:30 PM
#6
Quote from: lamby on November 18, 2017, 05:25:17 PM
I have come across a few airdrop forms asking you to send 0eth to a contract to receive coins.

My question is
If this is a kind of scam.
What are the implications of sending the zero eth to the contract address.

Will be very grateful if someone here can do well to enlighten me

They can't scam you by getting the Ethereums in your sender wallet, if you mean this kind of thing. They do this to see if you're the one deserving that airdrop. But, I'm not saying they're not a scam thing. What I'm saying they can't scam you with this method.
lamby
full member
Activity: 223
Merit: 100
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 06:19:19 PM
#5
Quote from: asayoyaasa on November 18, 2017, 05:33:25 PM
hi there, actualy i follow that kind of airdrop one (bitcoinquick). no its not scam you just need to pay the fee (just cost me 0.07 usd) and that meta data when you submit the transaction is the most important thing too do. im not quite understand how the sistem work cause im not eth dev but maybe that for prevent abuse from fake account and else who want to join the airdrop

I saw the bitcoinquick airdrop too. But I was a little septic al so I let it go.

There were about two other airdrops too
lamby
full member
Activity: 223
Merit: 100
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 06:16:53 PM
#4
Quote from: VarDiff on November 18, 2017, 05:32:40 PM
Not a scam, as I understand it

This is necessary in order to complete a smart contract.
You send 0 ETH (but still paying gas for this transaction) and receive some tokens to your wallet.

It works in same way as during ICO, but on ICO you need to pay more than 0 ETH usually, and for airdrop amount just set to zero.

P.S. I'm not a smart contract programmer, correct me if I'm wrong


Good to know.
I was wondering if such a case will not end up in my own coins or eth disappearing from my account.
asayoyaasa
copper member
Activity: 648
Merit: 159
Re: SENDING 0ETH TO A CONTRACT ADDRESS FOR AIRDROP
November 18, 2017, 05:33:25 PM
#3
hi there, actualy i follow that kind of airdrop one (bitcoinquick). no its not scam you just need to pay the fee (just cost me 0.07 usd) and that meta data when you submit the transaction is the most important thing too do. im not quite understand how the sistem work cause im not eth dev but maybe that for prevent abuse from fake account and else who want to join the airdrop
Pages:
Bitcoin Forum>Alternate cryptocurrencies>Altcoin Discussion
Jump to: