Top on-chain analyst ZachXBT says that crypto will most likely fall into the hands of strict government regulations if it can’t figure out how to prevent hacks. In a new post in his Telegram channel, the blockchain detective says his most recent work with the Bybit hack has given him some clarity on the crypto […]
The post Sweeping Government Regulations Likely Needed To Prevent More Crypto Hacks and Exploits: ZachXBT appeared first on The Daily Hodl.
The security incidents occurred days after a researcher discovered a critical bug in a Virtuals Protocol audited contract, which was fixed.
AI agent platform Virtuals Protocol suffered a hack to its Discord server on Jan. 8, and several fraudulent links purporting to be the Virtuals Protocol website were posted on Google Search.
According to the Virtuals team, one of the Discord group’s moderators was the victim of a private key breach that compromised the messaging server. The breach has since been resolved.
Cybersecurity firm Scam Sniffer also detected three malicious links advertised on the Google Search page impersonating the Virtuals Protocol website in a separate incident.
According to cybersecurity firm Recorded Future, North Korean hacker groups have stolen approximately $3 billion in funds since 2017.
BlueNoroff, the infamous North Korean hacker group responsible for a string of phishing and cybersecurity attacks since 2019, is targeting crypto firms with a new malware that attacks MacOS computers.
According to a report from SentinelLabs, the malware operation nicknamed “Hidden Risk” is spread through PDF files in multiple stages. The threat actors use fake news headlines and legitimate crypto market research to lure in unsuspecting individuals and companies.
Once the user downloads the PDF file, a seemingly legitimate decoy PDF is downloaded and opened, while the malware downloads as a separate file on the MacOS desktop in the background.
According to crypto security firm Scam Sniffer, 9,145 users were victims of phishing attacks during August 2024, losing funds as a result.
A wallet ending in "e57" fell prey to a sophisticated phishing attack on Sept. 27 that left the wallet drained of 12,083 Spark Wrapped Ethereum tokens (spWETH), valued at $32 million.
According to security firm CertiK, 10,000 spWETH, valued at approximately $26 million, was initially sent to a wallet beginning with "0x471c." A portion of these funds was subsequently transferred to 4 additional wallets.
1,750 Ether (ETH) was transferred to a wallet beginning with the characters "0x105c", 2,613 ETH was sent to a wallet starting with "0x278d", an additional 3,730 ETH to an address beginning with "0x408d", and, finally, approximately 1,865 ETH was transferred to an address beginning in "0xfaf2."
Monetary losses from the BingX hack were initially reported as totaling $26 million, but the figure has since swelled to $52 million.
BingX — a popular cryptocurrency exchange — has announced that withdrawal services on the platform will resume on Sept. 21, 2024, for certain digital assets.
According to the exchange's announcement, withdrawals for Tether's US dollar stablecoin (USDT), Circle's US dollar stablecoin (USDC), Bitcoin (BTC), Ethereum (ETH), Tron (TRX), and Solana (SOL) will resume first followed by withdrawal services for other tokens and digital assets over the next two weeks.
The exchange notified customers that deposit services would likewise resume in the next several weeks and told clients that withdrawal requests submitted before the disruption of withdrawal services have been canceled and must be resubmitted.
The Ethena website appears to have suffered a front-end attack, and users are encouraged not to interact with the platform.
The Ethena website suffered what appears to be a front-end exploit on Sept. 18, and Ethena Labs has cautioned users not to interact with any site or application claiming to be Ethena.
According to a social media post from Ethena Labs, the website's domain registrar account was compromised, and the site is currently deactivated until the issue is resolved.
Ethena Labs also reassured clients that the Ethena protocol was not affected by the exploit and that all customer funds were safe.
According to a recent FBI warning, North Korean hackers are "aggressively targeting" the crypto industry with “well-disguised” attacks.
A new Android malware called SpyAgent, discovered by software security firm McAfee, can steal private keys stored in screenshots and images on a smartphone’s internal storage.
More specifically, the malware uses a mechanism known as optical character recognition (OCR) to scan images stored on a smartphone and extract words from them. OCR is present in many technologies, including desktop computers, which can recognize, copy, and paste text from images.
McAfee Labs explained that the malware is distributed through malicious links sent through text messages. The cybersecurity company broke down the process, beginning with an unsuspecting user clicking on a link they received.
New research from cybersecurity firm SlowMist reveals that the Ethereum (ETH) ecosystem has lost $400 million in exploits year-to-date as the number of crypto hacking cases sees a 50% rise. According to SlowMist’s 2024 mid-year report, the second largest digital asset by market cap saw the most funds lost due to exploits as an ecosystem, […]
The post Ethereum Ecosystem Suffers $400,000,000 in Losses Year-to-Date, Amount of Crypto Hacks Rise by Over 50%: SlowMist appeared first on The Daily Hodl.
New data from a cybersecurity firm reveals that recent phishing scams over smart contract platform Solana (SOL) have stolen over $4 million in crypto assets. In a new blog post, security firm Scam Sniffer says that in the past month alone, bad actors were able to exploit $4.17 million worth of digital assets from about […]
The post New Phishing Scams on Solana (SOL) Have Stolen Over $4,000,000 in Crypto Assets: Security Firm appeared first on The Daily Hodl.
The Poloniex and HTX/Heco Bridge exploits as well as the KyberSwap flash loan attack were the three largest incidents in November, according to blockchain security firm CertiK.
The cryptocurrency industry has now seen its most “damaging” month for crypto thievery, scams and exploits, with crypto criminals walking away with $363 million in November, according to a blockchain security firm.
Around $316.4 million came from exploits alone, flash loans inflicted $45.5 million in damage, and $1.1 million was lost to various exit scams, CertiK stated in a Nov.
#CertiKStatsAlert
— CertiK Alert (@CertiKAlert) November 30, 2023
Combining all the incidents in November we’ve confirmed ~$363M lost to exploits, hacks and scams
This makes November the most damaging month this year
Exit scams were ~$1.1M
Flash loans were ~$45.5M
Exploits were ~$316.4M
See more details below pic.twitter.com/QoDy6d8IJH
The largest exploits in November occurred on Poloniex and HTX/Heco Bridge, with losses of $131.4 million and $113.3 million, respectively.
The third largest exploit was inflicted on a single victim who lost $27 million from a phishing attack.
Meanwhile, the $45 million KyberSwap attack accounted for nearly all damage done for flash loan attacks in the month.
The latest monthly figure has surpassed an earlier record of $329 million, set in September, caused mainly by the $200 million Mixin Network attack.
As of the end of November, about $1.7 billion has now been lost to exploits, exit scams and flash loan attacks in 2023.
