🚨 Urgent Security Proposal for the Lockbox - A Safer Claiming Process for All Users

Subject: Urgent Security Proposal for the Lockbox - A Safer Claiming Process for All Users

Dear WLFI Team,

First, thank you for your hard work on this project. I am a long-term supporter and am very excited about the future of WLFI.

I am writing to propose a critical security feature for the Lockbox system that will protect users like myself whose wallets have unfortunately been compromised by sophisticated sweeper bots.

The Current Problem:

As you know, many users in crypto have had their private keys compromised. For these users, the current claimVest process presents an unavoidable and extreme risk. The smart contract requires us to claim the unlocked tokens back to our original, compromised wallet.

The instant the tokens arrive, they will be stolen by automated sweeper bots before we have a chance to move them to a secure wallet. My own compromised wallet is being actively targeted, and I have already lost other assets to these bots.

The Proposed Solution: A Direct Transfer Option

To solve this for everyone and create a much safer ecosystem, I am requesting that the WLFI Team please consider implementing a direct transfer option from the Lockbox. My suggestions are:

Option 1: Link the Lockbox to the new WLFI Exchange Create a feature on the Lockbox website that allows users to claim their tokens and have them sent directly to their new WLFI Exchange wallet address.

Option 2: Add a “Transfer” Function to the Lockbox Modify the Lockbox contract or website interface to include a “transfer” or “claim to” option. This would allow a user to specify a new, secure recipient wallet address when they claim, completely bypassing the compromised wallet.

The Benefits:

• Protects Your Users: This would provide a secure path for your most vulnerable community members to rescue their assets.

• Prevents Theft: It would completely neutralize the threat of sweeper bots during the claim process.

• Builds Trust: Implementing this kind of user-focused security feature would build immense trust and goodwill within the community.

Thank you for your time and for considering this urgent request. We are all looking forward to a successful launch.

Sincerely,

A concerned WLFI User and investor.

저은어제메타마스크스위퍼해킹때문에 WLFI코인 20%이76853개을해킹당했습나더메타마스크지갑변경만했스면안당했쓰거고 며주전부터이메일로문의도했습니다 최근8월30일에이메일도착해고 어제해킹당할

yeah，I agree that, safe is the most important

yess please i hope the team is considering this proposal

My wlfi tokens were stolen 3 hours after unlocking, my private key was not compromised, it may be due to the EIP-7702 vulnerability, and now I am calling for a new address after the remaining 80% of the tokens are unlocked.

The 51,600 tokens I unlocked myself were all transferred and stolen 3 hours after unlocking. My wallet is a new Met aMask wallet of ico wlfi, and
my wallet address is: 0xfc33f60c057cb72711146a7225715dba0c84ebbf
The hacker’s wallet is: 0xB1D05D52A0c1f2e149d9Bfe5f868C46cee9bcAf5

same here with my wallet, I lost all my wlfi token due a sophisticated sweeper bot, I’m holder since October 2024 since the presale phase with KYC and scanning face I suggest adding facial recognition as a second approve after the wallet connect and it can be done the official website or soon on the wlfi app or wlfi exchange.

Yes - Proceed with voting on safer methods of claiming token from lockbox

Is the lockbox still available now? Or what… I believe I saw at least 30 accounts claiming they are affected like my case.

What is exactly your case ?

This it’s a PROPOSAL for WLFI.. Please Support and comment

Doesn’t really help

If their wallet is compromised, attackers can simply connect wallet and claim themselves…

They didn’t protect their wallet, now they’re paying the price. Not a WLFI problem.

We Are talking about Scam Sweeper Bot, with tokens are already in Boxlock…. if the scammer touch the wallet compromised can be track and detain by interpol.. read the proposal properly please.. we are asking only claims from Boxlocks to New WLFI exchange with Our KYC

yeah, they care about this

also, you have no clue of this works. The sweeper bot owner can, whenever he sees fit, connect and claim using the sweeper bot wallet as target. No difference.

ok they can not transfer as per contract only with KYC that we are asking. make sense

People get their wallets “hacked” all the time (in reality, they’re careless)

WLFI should spend zero effort on other people’s problems

This is not a WLFI problem

all this does is create a way for a compromise to move tokens directly to an unknown wallet, its not better, its worse, much worse.

I lost all my unlocked tokens. didn’t even get the chance to claim it myself. Please approve this proposal

I looked at your wallet address provided, you only have 13 transactions on wallet ending ‘ebbf’. You have no transactions where you interacted with a contract and did a method ID that starts with 0x04, so you did not sign any bad tx’s that gave up control in this way..its not a eip-7702 exploit.

This means your private key is compromised or you otherwise somehow did that move.

yeah, you messed up and signed a bad contract somewhere in your wallet history and gave up control of your wallet when you did it.

Let’s see @38super if you are Scammer you want to transfer my tokens, You must not have my ID to transfer the token to a new wallet… make sense… So @WLFI Team must to act Urgently with this case, because that’s why 80% are block and this is a new issue for all of Us.. even though more people will be with wallet compromised during the period of time….if you are going to a Bank and lost your account number you have to proof you are the owner of your account you are claiming.. make sense ?