Another round of crypto wallet thefts just hit the news. This time, several EVM-compatible wallets got drained, and about $107,000 vanished, according to a blockchain security expert. Sure, that number doesn’t jump out like some of the massive hacks we’ve seen, but how these thieves pulled it off? That’s what’s making people nervous.

Turns out, it wasn’t some flashy smart contract exploit or a protocol breaking down. Nope. This was all about sneaky approvals and old-school trickery. Basically, users signed off on transactions without realizing what they were really agreeing to. Attackers waited sometimes for weeks then swooped in and emptied accounts. By the time anyone noticed, the damage was done and the trail was ice-cold.

What’s going on here is a shift in how these attacks work. Hackers aren’t just poking around in the code anymore. They’re targeting people—tricking them with fake dApps, convincing-looking websites, and wallet pop-ups that seem totally legit. And with EVM wallets connecting to all sorts of chains and apps, one bad click can put a whole pile of assets at risk.

Security pros are out here warning everyone: check your wallet permissions from time to time, don’t sign transactions you don’t understand, and always double-check those URLs before you connect. If you want to play it safer, use a hardware wallet or a transaction simulator.

Bottom line? Even when things seem quiet, hackers are hunting. As crypto goes mainstream, your own habits are just as important as any fancy protocol. Ignore them, and you’re basically leaving the door wide open even if the losses feel small and silent at first.