关于「Beosin」的内容列表
According to Beosin monitoring, Moby, an on-chain option protocol, is suspected of private key leakage, and hackers modify the execution contract and use the emergencyWithdrawERC20 function to extract 207 ETH, 3.7 BTC, and 1,470,191 USDC, with a total value of about 2.50 million dollars.
Beosin Alert published a document on the X platform revealing that it has collected about 2,800 DEXX victim addresses, stolen transactions exceeded 9,000, and analyzed some of the stolen address funds. It was found that the stolen funds were still stored in the hacker's address and had not been transferred out. It is likely that the same hacker did it. It is speculated that the hacker transferred money according to the victim's token balance and ranked it in descending order of value.
Blockchain security audit firm Beosin Alert monitoring shows that the vETH project was attacked. According to the attack behavior, the cause of this incident is due to the price manipulation vulnerability of the associated contract 0x62f2... a1b5 recently deployed by the vETH project party, which caused the vETH contract to borrow at abnormal prices. The current cumulative loss is about $450,000.
According to the monitoring of blockchain security audit firm Beosin Alert, the DeltaPrime project administrator is suspected of private key leakage, and multiple key contracts are maliciously upgraded, resulting in the theft of about 5.90 million US dollars in assets. According to the analysis of the Beosin security team, the root cause of this abnormal behavior is that the interest calculation contracts of multiple lending pools in the project were modified to malicious attack contracts, resul...
According to Beosin Alert monitoring, the Indodax exchange was hacked, and the hackers profited about $17 million in crypto assets. Beosin's brief analysis of the incident is as follows: Attack method: The attacker gained access to the Indodax exchange hot wallet through unknown means and used this permission to transfer a large number of assets to multiple addresses on the Ethereum, Polygon, and Optimism chains, most of which were exchanged for ETH on the Ethereum chain. Affected blockchains: E...
据Beosin Alert监测显示,Indodax交易所遭到黑客攻击,黑客获利约1700万美元的加密资产,Beosin对本次事件简析如下: 攻击手法:攻击者通过未知手段获取了Indodax交易所热钱包的访问权限,并利用该权限在以太坊、Polygon、和Optimism链上转移大量资产至多个地址,其中大部分资产在以太坊链上兑换为ETH。 受影响的区块链:以太坊、Polygon、Optimism 攻击者地址:0xB0A2e43D3E0dc4C71346A71484aC6a2627bbCbeD 资金沉淀地址: 地址1:0x59101e532bc728599a2d373fcdc7aff58cb48df8(12,200,384.56 美元) 地址2:0x90FffbC09...
According to Beosin Alert monitoring, the DeFi protocol Penpie built on Pendle was hacked and about $27 million in crypto assets were stolen. Beosin's brief analysis of the incident is as follows: The attacker uses the claimRewards function in the market contract to re-enter the pledge to increase the balance of the staking contract, and then withdraws the excess tokens and pledged assets of the taking contract for profit 1. The attacker first creates an attack contract and builds the correspond...
据Beosin Alert监测显示,建立在 Pendle 上的 DeFi 协议 Penpie 遭到黑客攻击,被盗取约 2700 万美元的加密资产,Beosin对本次事件简析如下: 攻击者利用market合约中claimRewards函数重入质押以提高staking合约余额,再将taking合约多余的代币和质押资产提取以获利 1、攻击者首先创建攻击合约,并通过官方的factory构建的对应的market合约 2、调用staking合约的batc...
According to the monitoring of the blockchain security audit company Beosin Alert, the Ronin Bridge project has an abnormal behavior of extracting cross-chain assets. According to the analysis of the Beosin security team, the root cause of this abnormal behavior is that when the project party upgrades the contract, it does not normally initialize the operator weight required for cross-chain transaction confirmation, resulting in the minimumVoteWeight parameter in the contract being zero, allowin...
据区块链安全审计公司Beosin Alert监测显示,Ronin Bridge项目出现异常提取跨链资产的行为。据Beosin安全团队分析,此次异常行为的根本原因在于项目方升级合约时,未正常初始化配置跨链交易确认所需的operator权重,导致合约中的minimumVoteWeight参数为零,从而使得任何人的签名都能通过跨链验证。目前,Ronin bridge已经流失3,996个ETH,资金存放在0xc6aec开头地址(该地址是MEV bot...
According to the monitoring of the blockchain security audit company Beosin Alert, in July 2024, the amount of losses of various security incidents increased significantly compared with June. In July 2024, more than "20" security incidents occurred, and the total loss caused by hacking, phishing fraud and Rug Pull reached 286 million US dollars, an increase of about 56.3% compared with June. Among them, the attack incident was about 271 million US dollars, an increase of about 92.2%; the phishin...
