With the popularity of Non-Fungible Tokens (NFTs), the high value of NFTs makes them a target for phishing scammers, which harms the security and reliability of the Web3 NFT ecosystem. Despite the significance of this issue, there is a lack of systematic research in the area of emerging NFT phishing scams. To address this gap, we are the first to conduct a case retrospective analysis and empirical measurement study of real-world historical NFT phishing scams on Ethereum. We collect and publicly release the first NFT phishing dataset which includes 1,625 NFT phishing accounts and transaction records as of August 2023. We further categorize the existing scams into four phishing patterns and investigate their distinguishable behaviors. Then, we reveal the modus operandi preferences and economic impacts to characterize NFT phishing scams. We find that NFT phishers stole 67,188 NFTs, with a total direct selling profit of ${\$}$ 20.92 million. We also observe that scammers favor certain categories and collections of NFTs, coupled with signs of gang theft. Furthermore, we design a variety of account features for the classification task of NFT phishers based on empirical conclusions. Experimental results on real-world NFT transaction data demonstrate the effectiveness of these features in detecting NFT phishing accounts, and outperform traditional phishing detection methods with 41% average Precision and 44% average Recall.

中文翻译：

---

谁偷了我的 NFT？调查以太坊上的 Web3 NFT 网络钓鱼诈骗


随着不可替代代币 （NFT） 的普及，NFT 的高价值使其成为网络钓鱼诈骗者的目标，从而损害了 Web3 NFT 生态系统的安全性和可靠性。尽管这个问题很重要，但在新兴的 NFT 网络钓鱼骗局领域缺乏系统的研究。为了解决这一差距，我们是第一个对以太坊上真实世界历史 NFT 网络钓鱼诈骗进行案例回顾分析和实证测量研究的公司。我们收集并公开发布第一个 NFT 网络钓鱼数据集，其中包括截至 2023 年 8 月的 1,625 个 NFT 网络钓鱼账户和交易记录。我们将现有的骗局进一步分为四种网络钓鱼模式，并调查它们的可区分行为。然后，我们揭示了作案手法偏好和经济影响，以描述 NFT 网络钓鱼诈骗的特征。我们发现 NFT 网络钓鱼者窃取了 67,188 个 NFT，直销总利润为 ${\$}$ 2092 万美元。我们还观察到，诈骗者偏爱某些类别和集合的 NFT，并伴有帮派盗窃的迹象。此外，我们根据实证结论为 NFT 网络钓鱼者的分类任务设计了多种账户特征。对真实世界 NFT 交易数据的实验结果表明，这些功能在检测 NFT 网络钓鱼账户方面的有效性，并以 41% 的平均准确率和 44% 的平均召回率优于传统的网络钓鱼检测方法。