Smart contract applications can run in a decentralized network of nodes on modern blockchains such as Ethereum. Smart contracts are becoming more popular and valuable, making them more attractive targets for attackers. Many smart contracts have been targeted by hackers in recent years.

However, the new trend appears to be gaining momentum; Specifically, attackers are no longer looking for contracts at risk, but are using a more proactive strategy. Instead, they seek to trick the victim into a trap by sending contracts that appear weak but contain hidden traps. Attractions is the term used to describe this unique type of contract. But what is the cryptocurrency trap?

Bounties are smart contracts that seem to have a design issue that allows any user to drain Ether (the native Ethereum) from the contract if the user sends a certain amount of Ether to the contract up front. But when the user tries to exploit this obvious bug, another vulnerability, as yet unknown, opens and prevents the broadcast from starting. So what does a bowl of honey do?

The goal is for the user to focus entirely on the apparent vulnerability and ignore any indication that nodes have an additional vulnerability. Placement attacks succeed because people are often easily deceived, as with other forms of fraud. As a result, people are not always able to identify risks in the face of their own greed and preconditions. So honey pots are illegal?

How does a decoy trick work?
In crypto-attacks like decoys, user funds will be hijacked and only the creator of the decoy (the attacker) will be able to recover it. The honey pot usually works in three steps:

The attacker does not need any special skills to create traps in Ethereum smart contracts. In fact, the attacker has the same skills as a regular Ethereum user. They just need money to create and attract a smart contract. The phishing process typically consists of a computer, software, and data that simulates the behavior of a real system that attackers might want, such as IoT devices, a banking system, a publicly available tool, or a transmission network.

Although they appear to be part of a network, they are isolated and monitored. Since legitimate users are not motivated to access a decoy, all attempts to contact it are considered hostile. Decoys are often deployed in a Demilitarized Network Zone (DMZ). This strategy separates it from the leading production network while maintaining connectivity. Bait in the DMZ can be monitored remotely while attackers have access to it, reducing the risk of compromising the main network.

In order to detect intrusion attempts on the internal network, the decoys can be placed outside the external firewall, facing the Internet. The actual location of the honey pot depends on its complexity, the type of traffic it wants to attract, and how close it is to important business resources. It will always be isolated from the production environment, no matter where it is.

Recording and displaying attraction activity allows you to get an idea of ​​the degree and types of threats faced by the network infrastructure, distracting attackers from the real values. Cybercriminals can capture traps and use them against the company that created them. Cybercriminals have also used honey pots to collect information about researchers or organizations, bait and spread misinformation.

Attractions are often hosted on virtual machines. For example, if a honey pot has been hacked by malware, it can be quickly fixed. For example, the honey net consists of two or more honey jars on the net, and the honey farm is a central set of honey jars and analyzers.

Placement distribution and management can be facilitated by commercial and open source solutions. Decoy systems are sold separately, and decoy systems along with other security software are advertised as fraudulent technology. Honeypot software can be found on GitHub and can help beginners learn how to use Honeypot.

Types of honey jars.
There are two types of traps built on smart contract development and distribution: research and production traps. The research collects information about attacks and is used to analyze aggressive behavior in nature.

They collect information on attacker trends, vulnerabilities, and malware that enemies are currently targeting by analyzing both the environment and the outside world. This information can help you determine preventive protection and IP priorities.

Source: CoinTelegraph