Onchain investigator ZachXBT has warned that Polyarb, a site presenting itself as a prediction market platform, is running an active wallet drainer and is gaining reach through prominent crypto accounts replying to its posts.
Key Takeaways:
- ZachXBT warned on May 4, 2026, that Polyarb hosts an active wallet drainer targeting crypto users.
- Prominent accounts replying to Polyarb posts amplify the scam to new audiences without realizing it.
- The alert follows ZachXBT’s recent exposure of a U.S. law firm seeking $71 million in Lazarus-linked frozen funds.
What Polyarb Is Doing
Wallet drainers work by disguising a malicious smart contract approval as a routine transaction, such that when a user connects their wallet and signs what appears to be a deposit, claim, or market entry action, the drainer triggers a hidden separate approval that grants the attacker full access to the wallet’s funds.
Image source: X
ZachXBT specifically highlighted an amplification risk, i.e., a prominent crypto account had replied to a Polyarb post, giving the platform organic reach it would not otherwise achieve. Replying to a scam platform’s content, even skeptically, pushes that platform in front of the replying user’s entire audience, which can number in the millions, with no indication that the source is malicious.
Part of a Wider Happening
Fake decentralized finance ( DeFi) and prediction market platforms have become an increasingly common attack vector in 2026. Scam operators exploit the growing visibility of legitimate platforms like Polymarket and Kalshi, both of which have disclosed regulatory relationships with the Commodity Futures Trading Commission (CFTC), by creating look-alike sites with similar branding and no audited contracts.
ZachXBT has built a consistent record of exposing these and other related threats before significant losses accumulate. Earlier this month, the investigator revealed that a U.S. law firm (Gerstein Harrow) had filed claims seeking to seize $71 million in ethereum frozen after the April 2026 KelpDAO exploit tied to the Lazarus Group, using a 2015 legal judgment against North Korea to jump ahead of actual hack victims in any recovery queue.
How to Stay Safe
Before connecting a wallet to any prediction market or DeFi platform, users should verify the contract address against the platform’s official documentation and confirm that a public smart contract audit from a reputable security firm exists. Red flags include no disclosed regulatory relationship, no audited contracts, and social media profiles that appeared recently relative to their claimed activity level.
Revoking token approvals after any suspicious interaction using tools such as Revoke.cash can limit ongoing exposure if a drainer has already been triggered. Using a hardware wallet, rather than a browser-based hot wallet holding significant funds, when connecting to unfamiliar platforms, can provide an additional layer of protection, as every transaction requires physical confirmation.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Whale Spends $17M to Buy 7,284 ETH at $2,334, Stakes via Lido
According to ChainCatcher and Onchain Lens monitoring, a whale recently spent $17 million in USDC to purchase 7,284 ETH at $2,334 per token and subsequently staked the assets through Lido Finance. The whale still holds $10.15 million in USDC and may continue to accumulate more ETH.
GateNews59m ago
A Manhattan judge approves the transfer of $71 million worth of ETH on Arbitrum to Aave, while preserving claims by alleged North Korean terror attack creditors
On May 9, a New York Manhattan federal judge Margaret Garnett ruled to allow the Arbitrum DAO to freeze $71 million (30,765 ETH) and transfer the assets to a wallet controlled by Aave, continuing to push forward the recovery plan; in the same ruling, she also preserved the legal claims of holders of a North Korea terror attack judgment. CoinDesk reports: the judge modified the earlier seizure order, enabling Arbitrum governance to move that amount of ETH via on-chain voting, and protecting votin
ChainNewsAbmedia1h ago
Judge Unblocks $71M in ETH for Aave Transfer as North Korea Creditors Retain Legal Claim
According to The Block, on Friday, Judge Margaret Garnett of the U.S. District Court for the Southern District of New York partially unblocked 30,766 ETH (approximately $71 million) frozen inside Arbitrum DAO since May 1, allowing an on-chain governance vote to transfer the ether to a digital
GateNews4h ago
Ethereum's DeFi TVL Dominance Drops to 53%, Approaching Multi-Year Low
Ethereum’s share of total decentralized finance ( DeFi) liquidity has fallen to its lowest level in years, as rival blockchains chip away at a dominance that once exceeded 63%.
Key Takeaways:
Ethereum’s DeFi TVL share fell from 63.5% to 53% between January 2025 and May 2026.
Defillama data s
Coinpedia7h ago
BlackRock Files to Launch $6.1B Tokenized Money Market Fund on Ethereum
According to Bloomberg, BlackRock has filed to launch tokenized shares for its $6.1 billion BlackRock Select Treasury Based Liquidity Fund (BSTBL) targeting stablecoin holders. The fund invests in cash, U.S. Treasury notes, and securities with remaining maturities not exceeding 93 days. The tokenize
GateNews12h ago
