1. Home
  2. attack

attack

Home invaders used machete, Toblerone to rob a man of his Bitcoin

Scottish authorities tracked, traced, and seized Bitcoin stolen during a 2020 home invasion, marking the first robbery in Scotland to involve cryptocurrency tracing. 

Scottish prosecutors have seized and converted 23.5 Bitcoin into cash from a 2020 robbery that saw three men armed with a machete and a Toblerone chocolate bar break into a home near Glasgow.

The case — initially heard last year — “was the first robbery in Scotland to involve tracing stolen cryptocurrency,” said Detective Inspector Craig Potter from Police Scotland’s Cyber Investigations unit.

In a first for the country, prosecutors used proceeds of crime legislation to seize and convert the Bitcoin (BTC) stolen in the March 2020 robbery into cash, BBC News reported on Sept. 2.

Read more

Rumble secures $775 million investment from Tether

Musk claims X hit by ‘massive DDoS attack’ delaying Trump interview

Many X users have complained they have been unable to join the livestream of Elon Musk’s scheduled interview with Donald Trump on the platform.

X owner Elon Musk claims the social media platform “appears to” have been hit with a Distributed Denial-of-Service (DDoS) attack as his slated interview with presidential hopeful Donald Trump was set to kick off. 

“There appears to be a massive DDoS attack on X. Working on shutting it down," Musk posted to X on Aug. 12.

It comes as technical issues plagued the X Space Musk and Trump were scheduled to hold at 8:00 PM Eastern US time as multiple X users complained they were unable to join. Those who have joined have only heard waiting music — neither Musk nor Trump have spoken. 

Read more

Rumble secures $775 million investment from Tether

Coinbase-posing scammers steal $1.7M from a user amid a string of attacks

A victim who claims to have lost $1.7 million said a scammer called them claiming to be from Coinbase and sent emails that looked like they came from the crypto exchange.

At least three Coinbase users and one crypto user have reported being targeted by Coinbase-impersonating scammers in the past week, with one victim claiming to have been swindled out of $1.7 million.

Edge & Node co-founder Tegan Kline shared to X on July 7 an explainer from a “good friend” who had their self-custody wallet drained of $1.7 million a day prior after a scammer tricked them into sharing part of their seed phrase.

The victim said the scammer called claiming they were from Coinbase’s security team and sent the victim an email that appeared to be from Coinbase that verified the victim was “speaking to an official representative at Coinbase.”

Read more

Rumble secures $775 million investment from Tether

41% of top ZK airdrop wallets have already sold everything — Nansen

The data covered the “top 10,000 addresses” that received zkSync’s new ZK token, though that only makes up 1.4% of the total wallets eligible for the ZK airdrop.

Nearly half of the top wallets that received the new zkSync (ZK) token on Monday, June 17, have already sold their entire allocation in the airdrop, contributing to a 34.5% fall in the price of ZK since its launch.

Data from blockchain analytics firm Nansen shows that nearly 41% of tracked addresses sold their entire airdrop, while 29.2% sold at least some of their tokens. The total amount sold across both cohorts was over 486 million ZK.

Just over 30% of the top receiving wallets have held onto their ZK tokens.

Read more

Rumble secures $775 million investment from Tether

New ‘Brokewell’ Smartphone Attack Drains Bank Accounts and Leaks Location, Posing ‘Significant Threat to Banking Industry’: Report

New ‘Brokewell’ Smartphone Attack Drains Bank Accounts and Leaks Location, Posing ‘Significant Threat to Banking Industry’: Report

Security researchers are issuing an urgent alert about a new malware attack that’s targeting Android users’ bank accounts. The malware, which has been nicknamed “Brokewell,” takes the form of a fake Google Chrome browser update webpage that mimics Google’s own messaging style, reports ThreatFabric. When users are directed to the page, they see a message […]

The post New ‘Brokewell’ Smartphone Attack Drains Bank Accounts and Leaks Location, Posing ‘Significant Threat to Banking Industry’: Report appeared first on The Daily Hodl.

Rumble secures $775 million investment from Tether

Bitcoin briefly dips under $60K amid reports of worsening Middle East crisis

The price of Bitcoin briefly went under $60,000 for the second time this week after reports of explosions at an airport in central Iran.

The price of Bitcoin (BTC) briefly dropped below its critical $60,000 support level again on Friday, falling 5.44% in just two hours amid escalating geopolitical tension in the Middle East.

On April 19, Bitcoin's price briefly slumped down to $59,698 before quickly recovering to $61,352. It's a crucial breakdown to note, given that if its price falls down to $59,000 then approximately $243 million in long positions will be liquidated, as per CoinGlass data

Over the last 4-hours, $34.03 million in Bitcoin long positions have been liquidated, data shows. 

Read more

Rumble secures $775 million investment from Tether

Peckshield: Cryptocurrency Hackers Stole Over $360 Million in February

Peckshield: Cryptocurrency Hackers Stole Over 0 Million in FebruaryCryptocurrency hackers stole over $360 million during February, almost doubling the amount stolen in January. According to Peckshield, a cryptocurrency and blockchain security firm, the largest hack event in February involved a security breach in Playdapp, a Web3 gaming platform, that lost $290 million four days after being attacked. Fixedfloat, a cryptocurrency exchange, also lost […]

Rumble secures $775 million investment from Tether

Friend.tech users blame SIM swaps after more than 100 ETH drained in a week

In a short period of time, four friend.tech users reported their accounts were compromised and drained after hackers seized control of their mobile numbers.

Friend.tech users are warning of possible SIM-swap attacks after a recent spate of supposed hacks resulting in nearly 109 Ether (ETH) worth around $178,000 being drained from four users in under a week.

On Sept. 30, the X (formerly Twitter) user known as “froggie.eth” warned their Friend.tech account was SIM-swapped — where exploiters gain control of a user’s mobile number to intercept two-factor authentication codes, then used to access accounts — and subsequently drained of over 20 ETH.

Days later, on Oct. 3, a string of Friend.tech users reported similar incidents, with musician Daren Broxmeyer saying he was SIM-swapped and drained of 22 ETH.

His phone was earlier “spammed with phone calls,” which he believed was to force him to miss a text from his service provider warning him that someone was trying to access his account.

The same day another user, “dipper,” also said their account was compromised, adding they have “no idea” how exploiters could hack their account, as they use strong passwords.

The fourth user, “digging4doge,” was drained of around 60 ETH after falling for a phishing scam that tricked them into sharing a login code.

Crypto investment firm Manifold Trading explained that any hacker gaining access to a Friend.tech account is then able to “rug the whole account.”

Assuming that a third of Friend.tech accounts are connected to phone numbers, around $20 million is at risk of being exploited through Friend.tech user-focused exploits, they said.

Related: Friend.tech look-alike ‘Alpha’ emerges on Bitcoin network

Manifold also suggested that, technically, all of Friend.tech is at risk due to how the platform’s security is set up, and solving the issues “should honestly be the number 1 priority.”

Manifold suggested Friend.tech allow users to add 2FA to logins, key decryptions and transactions.

Users should also be given the option to change the login method from a number to email and allow for third-party wallets to be used.

High-profile crypto figures have previously been successfully SIM-swapped, with their accounts used to carry out phishing attacks, such as Ethereum co-founder Vitalik Buterin’s X account in September.

Cointelegraph contacted Friend.tech for comment but did not immediately receive a response.

Magazine: Blockchain detectives — Mt. Gox collapse saw birth of Chainalysis

Rumble secures $775 million investment from Tether

Balancer blames ‘social engineering attack’ on DNS provider for website hijack

Blockchain security firms SlowMist and CertiK also believe the crypto wallet drainer Angel Drainer was involved in the estimated $238,000 exploit.

The team behind Balancer, an Ethereum-based automated market maker, believes a social engineering attack on its DNS service provider was what led to its website’s frontend being compromised on Sept. 19, leading to an estimated $238,000 in crypto stolen.

“After investigation, it is clear that this was a social engineering attack on EuroDNS, the domain registrar used for .fi TLDs,” the firm explained in a Sept. 20 X post.

Approximately 8 hours after the first warning of the attack, Balancer said its decentralized autonomous organization (DAO) was actively addressing the DNS attack and was working to recover the Balancer UI.

At 5:45 pm UTC on Sept. 20, Balancer said it was successful in securing the domain and bringing it back under the control of Balancer DAO. It also confirmed its subdomains “app.balancer.fi” and other “balancer.fi” are safe to use again.

However, it suggested any other projects using the same top-level domain should consider moving to a more secure registrar. 

EuroDNS is a Luxembourg-based domain name registrar and DNS service provider. Cointelegraph has reached out to EuroDNS for comment.

Angel Drainer involved

Blockchain security firms SlowMist and CertiK reported that the attacker employed Angel Drainer phishing contracts.

SlowMist said the exploiters attacked the Balancer’s website via Border Gateway Protocol hijacking — a process where hackers take control of IP addresses by corrupting internet routing tables.

The hackers then induced users to “approve” and transfer funds via the “transferFrom” function to the Balancer exploiter, it explained.

Related: Breaking: ‘All funds are at risk' — Steadefi exploited in ongoing attack

The hacker, whom SlowMist believes may be related to Russia, has already bridged some of the stolen Ether (ETH) to Bitcoin (BTC) addresses via THORChain before eventually being bridging the ETH back to Ethereum, blockchain security firm SlowMist explained on Sept. 20.

SlowMist stated in an earlier post that the hacker transferred about 15 wrapped-Ether (wETH.e) on the Avalanche blockchain.

Meanwhile, despite Balancer confirming its subdomains, balancer.fi to now be safe, visits to the website still shows “Deceptive site ahead” warning when attempting to access the Balancer’s website.

Balancer’s website as of Sept. 20 at 10:22 pm UTC. Source: Balancer.

Cointelegraph reached out to Balancer to confirm the amount of funds lost but did not receive an immediate response.

Magazine: $3.4B of Bitcoin in a popcorn tin: The Silk Road hacker’s story

Rumble secures $775 million investment from Tether

DeFi protocol Balancer frontend is under attack, urges users to stay away

The platform notified its community on Sept. 19 at 11:49 pm UTC, urging users to not interact with Balancer's protocol until further notice.

Balancer, an Ethereum-based decentralized finance protocol has confirmed its user interface is currently "under an attack."

The platform notified its community on Sept. 19 at 11:49 pm UTC, urging users to not interact with Balancer's protocol until further notice.

Balancer said the details of the attack are under investigation. The firm hasn't confirmed whether user funds are safe at this point in time.

However, one blockchain analyst, ZachXBT claims $238,000 was stolen within the first 30 minutes of Balancer breaking the news.

This is the second theft from Balancer in a month, after it warned of a critical vulnerability on Aug. 22, which resulted in a $2 million exploit several days later.

This is a developing story, and further information will be added as it becomes available.

Rumble secures $775 million investment from Tether