The wallet drainer ecosystem has matured into a full-blown industry. By 2026, drainer-as-a-service operators run franchises with affiliate networks, hosted phishing infrastructure, and 24/7 cash-out support. Individual drains have crossed the $20M mark. The patterns have evolved beyond what most users (and many security teams) recognise. This piece walks through the 2026 drainer landscape and what defends against it.
The drainer-as-a-service economy
Modern wallet drainers operate like SaaS:
- The operators build and maintain the drainer kit: smart contracts, signing logic, drain UIs, mixer infrastructure.
- The affiliates drive traffic through phishing campaigns, fake X / Discord posts, malicious browser extensions.
- Revenue split is typically 70/30 in favour of the affiliate (sometimes inverted for low-skill affiliates using the operator's full kit).
- Tooling includes dashboards showing drain success rate, wallet types targeted, fund flow per address, and "VIP" support for large drains.
The economic model means drainer operators can spend significant resources on technical innovation. The gap between a drainer's sophistication and a typical user's defences keeps widening.
Pattern 1: gasless approval phishing
The classic approval phishing attack required the user to sign a transaction (approve(spender, max)) and pay gas. Modern drainers eliminate the friction:
- Permit-based drains: the drainer asks the user to sign an off-chain
permit(EIP-2612) message. The signature itself authorises the transfer; no on-chain transaction from the user is required. The drainer then submits the permit and immediately drains. - Permit2-based drains: many tokens don't support EIP-2612 permits. Uniswap's Permit2 contract added a universal permit layer. A signed Permit2 message can authorise transfers of any token the user has approved Permit2 for, and most users have, given Permit2's wide adoption.
The user sees a "free" signature request. They sign. The funds are gone before they realise the signature was authorisation to drain.
Defence: never sign an off-chain message you don't fully understand. Wallets that show the decoded permit / Permit2 details before signing are a partial defence. Hardware wallets that display the raw EIP-712 structure help. Most users are not trained to read these.
Pattern 2: EIP-712 typed data abuse
EIP-712 typed data signing was supposed to make signatures readable: instead of signing an opaque hash, users sign a structured message they can review.
In practice, drainers exploit two gaps:
- Domain confusion: the EIP-712 domain separator includes a name and version. Drainers craft domains that look like legitimate dApps ("Uniswap V3 Router", but pointing at a malicious contract). Users see "Uniswap" in the wallet UI and sign.
- Field misdirection: the typed data fields can be named anything. A drain transaction can be presented as a "Login" or "Verification" message with a field labeled "amount" that the user assumes is gas, but is actually the drain amount.
Defence: read the domain's verifyingContract address, not just the name. Contract addresses are the ground truth. Names and versions are display strings.
Pattern 3: ERC-7702 delegation traps
The 2026 emerging pattern: drainers using ERC-7702 to permanently delegate an EOA to a malicious contract.
The flow:
- User is phished into signing an ERC-7702 delegation message.
- The signed message authorises the user's EOA to delegate execution to a drainer contract.
- Once submitted, the EOA is the drainer contract for any subsequent transaction.
- Crucially, the delegation persists until explicitly revoked. A user who delegates and forgets has a permanently compromised wallet.
The drain doesn't even need to happen immediately. A patient drainer waits weeks, drains when funds appear, and the user never realises the original signature was the compromise.
Defence: ERC-7702 delegation requests should be presented in wallet UIs with a much higher friction level than ordinary signatures. Some 2026 wallets are starting to require explicit acknowledgement ("I understand this delegates my account permanently"). Most aren't.
Pattern 4: drainer-as-a-page (drainer link in legitimate-looking sites)
Drainers no longer require obvious phishing pages. The 2026 technique:
- Compromised search results: drainer URLs paid into Google ads, indexed via SEO poisoning, or surfaced via compromised partner sites.
- NFT mint hijacking: a legitimate NFT project's official mint URL is briefly hijacked (DNS poisoning, compromised social, BGP hijack) and serves a drainer instead.
- Wallet-connect prompts on legitimate dApps: a compromised dApp serves the drainer signature request from the same domain users trust.
- Browser extension supply chain: a popular extension is sold to a malicious operator and updated to inject drainer prompts.
The user did everything right: went to "the right" URL, used "the right" wallet, signed what looked like a normal transaction. The compromise was upstream.
Defence: anything from any URL should be treated as untrusted before signing. Hardware wallets that display the decoded transaction data give the user a chance to spot anomalies. Wallet-side simulation (Blockaid, Wallet Guard, native simulation in Rabby / Frame) is the practical defence layer.
What dApp operators owe their users
If you operate a dApp that prompts wallet signatures, the bare-minimum 2026 standard:
- Never request a permit without explicit context. The signature prompt must clearly state what the permit authorises.
- Use type-safe signatures (EIP-712) with a verifying contract that is your real production contract.
- Don't request signatures with overly broad approval scopes (e.g., max approval to a generic spender) when scoped approvals would do.
- Implement transaction simulation hints when integrating with wallets that support them (Blockaid, Wallet Guard).
- Have a clear "report phishing" path for users who believe they were targeted via your brand.
What protocols owe their treasuries
For protocol operators and DAO treasuries, the drainer threat lands differently. The treasury usually doesn't visit phishing sites, but its signers are individuals with personal wallets that are targeted.
- Treasury and personal wallets must be separated. A signer who is drained personally must not have access to treasury authority through the same path.
- Hardware wallets with display verification are the floor. A signer who clicks through a software wallet prompt is signing what the prompt says, which may not be what they intended.
- Transaction simulation before signing: wallet UIs that show what will happen, not just what is being signed, are critical.
- Wallet surveillance on treasury and signer-adjacent addresses: continuous monitoring catches the post-compromise activity even when the initial signature couldn't be prevented.
When a drain happens
The first hour matters. Our piece on DeFi incident response in the first hour walks through the playbook. Specifically for wallet drains:
- Revoke approvals immediately on the compromised wallet, but only via a different, uncompromised wallet, since signing from the drained one may be intercepted.
- Trace the funds as they move. The trace is what enables eventual recovery (sometimes weeks later).
- Contact the off-ramps. Exchanges and custodians can freeze funds if the trace reaches them in time.
- Document everything. The drain trace is the artifact that any law enforcement engagement will need.
Incident response engagements for wallet drains succeed sometimes, usually when engagement is within hours, not days.