A cryptocurrency trader lost over $2.5 million in USDT after being repeatedly scammed by the same attacker address through an address poisoning scam involving zero-value transfers. The first loss amounted to 843,000 USDT, followed by a second transfer of approximately 1.7 million USDT to the same phishing address (0x4668EE748c88DA4FEc595773b22f96f366eD6B76). The incident, detected by security firms such as CyversAlerts and PeckShieldAlert, involved a single victim who was targeted twice within a few hours. Address poisoning scams work by attackers sending zero-value transactions from addresses that closely mimic legitimate ones, causing these fake addresses to appear in the victim's transaction history and increasing the risk of accidental transfers. A recent study found over 270 million address poisoning attempts on BNB Chain and Ethereum between July 2022 and June 2024, with 6,000 successful cases leading to losses exceeding $83 million. On-chain exploits overall resulted in $1.67 billion in losses in the first quarter of 2025. Security experts recommend that crypto users carefully verify recipient addresses before transferring funds to avoid falling victim to similar scams.