关于「 chain security」的内容列表
According to blockchain security firm SlowMist on the X platform, fraudsters are using fake Cloudflare verification pages to induce users to execute malicious code. In addition, a scam called "Safeguard" has appeared on Telegram, and users need to be vigilant. SlowMist advises users to install trusted antivirus software such as AVG, Bitdefender or Kaspersky to enhance security protection.
Security agency SlowMist recently released the "Blockchain Security and Anti-Money Laundering Annual Report 2024", which states: According to SlowMist Hacked, there were 410 security incidents in 2024, with a loss of $2.013 billion. Compared with 2023 (464 incidents, with a loss of about $2.486 billion), the loss decreased by 19.02% year-on-year. DeFi remains the most commonly attacked area. In 2024, there were 339 DeFi security incidents, accounting for 82.68% of the total number of security in...
Blockchain security monitor Cyvers Alerts said in a post that the total loss of hacking and fraud in the crypto sector exceeded $6 billion, and the overall exploit increased by 40% compared to last year, with access control vulnerabilities dominating and causing 81% of the losses.
Blockchain security firm SlowMist posted that as of November 18, DEXX Incident Report Update: More than 1,100 reports of stolen funds have been received from the community. After removing duplicate reports, more than 900 victims have been identified, with total losses estimated at $21 million (subject to price fluctuations). Details of losses (to date): $1 million: 1 victim $500,000 to $1 million: 2 victims $100,000 to $500,000: 33 victims $10,000 to $100,000: 292 victims • < 10,000 USD:...
Blockchain security firm SlowMist published a statement saying that based on data submitted by community users, we have calculated that DEXX was stolen and lost millions of dollars, which are currently scattered across multiple different hacker addresses.
Blockchain security audit firm Beosin Alert monitoring shows that the vETH project was attacked. According to the attack behavior, the cause of this incident is due to the price manipulation vulnerability of the associated contract 0x62f2... a1b5 recently deployed by the vETH project party, which caused the vETH contract to borrow at abnormal prices. The current cumulative loss is about $450,000.
Blockchain security firm SlowMist has issued a security alert, saying it has detected suspicious activity related to vETH tokens. SlowMist reminds users to remain vigilant and pay attention to asset safety. According to Cyvers Alerts analysis, the hackers caused about $440,000 in losses through price manipulation. The attackers first obtained funds in the BNB Chain through Tornado Cash, and then crossed the chain to Ethereum through Bridgers.
According to the monitoring of blockchain security audit firm Beosin Alert, the DeltaPrime project administrator is suspected of private key leakage, and multiple key contracts are maliciously upgraded, resulting in the theft of about 5.90 million US dollars in assets. According to the analysis of the Beosin security team, the root cause of this abnormal behavior is that the interest calculation contracts of multiple lending pools in the project were modified to malicious attack contracts, resul...
According to a new report from blockchain security firm Blockaid, the notorious crypto-phishing toolkit AngelDrainer is back, this time with a new and improved version called AngelX that has deployed hundreds of malicious applications. Blockaid said on September 4 that the new AngelX system had deployed 300 malicious decentralized applications (DApps) designed to steal crypto users' digital assets.
According to blockchain security firm Immunefi, the digital asset industry recorded its lowest monthly losses of the year in August, with losses from hacking and fraud amounting to just $15.10 million. This development shows a significant 38% drop in losses compared to August 2023, when losses were around $24.60 million, and a staggering 94.5% drop compared to July 2024. The report said the hacks all occurred in the DeFi space, but most of the losses stemmed from a high-profile incident, the Ron...
Blockchain security firm Asymmetric Research discovered a critical vulnerability in Circle's Noble-CCTP and has privately notified Circle. The vulnerability has been promptly fixed and no user loss in capital or malicious attacks have occurred. The vulnerability lies in the Noble-CCTP component of the USDC cross-chain transfer protocol. The security firm discovered that malicious actors could counterfeit USDC tokens on the Noble Bridge by bypassing the message sender verification process. This v...
Blockchain security audit provider Zellic has acquired smart contract audit platform Code4rena, its first acquisition, with the aim of providing customers with more comprehensive security review services. Code4rena's CEO said it will continue to operate independently. Previously, it was reported that on March 22, audit DAO Code4rena sold 150 million ARENA tokens (15% of the total) to Paradigm for $6 million.
A report by blockchain security firm Halborn shows that, despite a decrease in the amount stolen in 2023, decentralized finance (DeFi) hacks remain a major threat to the industry. The report summarizes the 100 largest DeFi hacks that occurred between 2016 and 2023, with a cumulative total of $7.40 billion, the majority of which occurred on Ethereum, Binance, and other smart chains.
According to Salus Security's BNB Chain Security Report for the second quarter of 2024, 35 security incidents were reported in the second quarter of 2024, a significant decrease from the 115 incidents recorded in Quarter 1 in 2023. The loss was reduced to $9.20 million, which was also lower than the $70 million loss in the second quarter of 2023, a decrease of 87% year-on-year. In addition, the number of security incidents in the second quarter of 2024 also decreased significantly, from 115 repo...
According to the monitoring of the blockchain security audit company Beosin Alert, the Ronin Bridge project has an abnormal behavior of extracting cross-chain assets. According to the analysis of the Beosin security team, the root cause of this abnormal behavior is that when the project party upgrades the contract, it does not normally initialize the operator weight required for cross-chain transaction confirmation, resulting in the minimumVoteWeight parameter in the contract being zero, allowin...
