Search
Attackers Steal $1.6 Million in Digital Assets From Defi Protocol Pike Finance
2.5.2024
Unknown attackers recently siphoned digital assets valued at just under $1.6 million from the decentralized finance protocol, Pike Finance. The protocol announced it is offering a 20% reward for the return of the funds, while an ongoing investigation into the incident continues. USDC Vulnerability...
Pike Finance clarifies ‘USDC vulnerability’ statement on $1.6M exploit
2.5.2024
Pike highlighted that the exploit occurred due to their team’s inadequate integration of third-party technologies such as the CCTP or Gelato Network’s automation services
Solana memecoin hits a whopping $328T market cap — but for all the wrong reasons
30.4.2024
Crypto users have continued to send funds to the apparent honeypot scam, even with many warnings they won’t be able to transfer any of it
U.S. Cyber Authorities Investigate Binance Trust Wallet iOS App for Vulnerabilities
15.2.2024
The Binance-owned wallet has been the victim of multiple cyber attacks during 2023
Man Fingered in the July 2022 Hack on 2 Decentralized Exchanges Pleads Guilty to Computer Fraud
18.12.2023
U.S. Attorney for the Southern District of New York announced on Dec. 14 that Shakeeb Ahmed, a man accused of hacking two decentralized crypto exchanges, had pleaded guilty to the charge of computer fraud. Ahmed is said to have attempted to cover his tracks by using overseas crypto exchanges...
Connect Kit Exploit Sparks Criticism of Ledger’s Security Framework
15.12.2023
On Dec. 14, 2023, Ledger’s Connect Kit, a Javascript library for wallet connectivity, suffered a significant exploit. This incident, which was contained within two hours, has brought forth a number of criticisms of Ledger’s security practices. Ledger Exploit Elicits Mixed Reactions From...
Ledger Connect Kit Breach: Hacker Siphons $484K, Company Rolls Out Version 1.1.8
14.12.2023
The unknown attacker that compromised Ledger’s Connectkit Library has reportedly siphoned $484,000 from wallets, according to the onchain intelligence firm Lookonchain. Ledger disclosed a former employee fell victim to a phishing attack and the attacker gained access to the Ledger Connectkit...
Ledger Library Exploit Alert: Users Warned Against Interacting With Dapp Front Ends Amid Wallet Drainer Risk
14.12.2023
According to several reports, there’s been an alleged Ledger Connectkit Library exploit and people are being warned not to interact with decentralized application (dapp) front ends. Reportedly, the library that maintained several dapps now contains a wallet drainer. Ledger Library Breach: Experts...
Bitcoin Developer Luke Dashjr Registers Ordinal Inscriptions Workaround as a Vulnerability
13.12.2023
Luke Dashjr, Bitcoin developer and CTO of Mummalin, has registered a method that allows Ordinal inscriptions to be saved on the Bitcoin blockchain as a code vulnerability. The vulnerability, CVE-2023-50428, states that “datacarrier size limits can be bypassed by obfuscating data...
Thirdweb Begins Mitigation of Vulnerability Affecting Thousands of Smart Contracts
8.12.2023
Thirdweb, a Web3 development framework provider, has announced that it has started mitigating a vulnerability that could potentially affect thousands of smart contracts across several networks. The vulnerability, uncovered in November, impacts various pre-built smart contracts that the framework...
A Major Vulnerability Found in Early Crypto Wallet Software Risks Billions in Assets
17.11.2023
A critical vulnerability in early cryptocurrency wallets, identified by cybersecurity startup Unciphered, threatens billions of dollars in digital assets. Originating from a flaw in the BitcoinJS software used for wallet generation between 2011 and 2015, this issue exposes wallets to potential...
Solana hoses down ‘inaccurate’ CertiK report on Saga phone security flaws
16.11.2023
CertiK claims Solana’s Saga smartphone contains a critical “bootloader vulnerability” — Solana Labs says the claims are entirely inaccurate
White Hat Hackers Awarded $300K After Uncovering Critical Chainlink VRF Vulnerability
15.11.2023
White hat hackers earn $300K Chainlink bounty for responsibly disclosing critical VRF vulnerability. Image by ZayNyi, Adobe Stock. Decentralized oracle network Chainlink recently awarded white hat hackers Zach Obront and Or Cyngiser of Trust $300,000 for uncovering a critical vulnerability in...
Cybersecurity team claims up to $2.1B in crypto stored in old wallets are at risk
15.11.2023
The security firm urges those using wallets generated from 2011 to 2015 to transfer their assets to crypto wallets that were generated more recently
WinRAR patches zero-day bug that targeted stock and crypto traders
25.8.2023
According to cybersecurity firm Group-IB, weaponized ZIP file archives were being shared on crypto trading forums, with each one containing a nasty surprise
Cypher Protocol reveals $600K of stolen funds is now frozen on CEXs
18.8.2023
Solana-based Cypher Protocol has managed to stop around $600,000 of stolen funds from exiting various centralized exchanges
Fireblocks Discloses Bitforge Vulnerabilities Affecting Dozens of Wallet Providers
12.8.2023
Fireblocks, a digital assets security company, has disclosed vulnerabilities affecting several cryptocurrency wallets, collectively named “Bitforge.” Through these vulnerabilities, criminals could steal millions in cryptocurrency without having direct contact with the owners of...
Navigating the Storm: Defi’s Precarious Position Amid a String of Exploits and Market Declines
4.8.2023
In the wake of July’s unprecedented wave of decentralized finance (defi) breaches, including Curve Finance’s staggering $62 million exploit, the defi economy has plummeted into a gloomy state. Hovering perilously close to dipping beneath the $40 billion threshold, the total value...
Certik Uncovers Security Vulnerability in Worldcoin’s Verification Process
4.8.2023
On May 29, 2023, Certik, a blockchain and smart contract auditing firm, reported a critical security vulnerability within Worldcoin’s verification process. This flaw could have allowed attackers to bypass strict identification measures and operate an Orb, a device used to collect users’...
Web3 Industry Losses Topped $656 Million in H1 of 2023 — Study
5.7.2023
Hackers stole about $471 million in the first six months of 2023 and the theft of $197 million from Euler Finance in March was the single biggest hacking incident in the period, the latest Beosin Web3 report has shown. Contract vulnerability was the most common (60) type of attack during the period...