hackers
After Mango Markets exploit, Compound pauses 4 tokens to protect against price manipulation
Decentralized lending protocol Compound has paused the supply of four tokens as lending collateral on its platform, aiming to protect users against potential attacks involving price manipulation, similar to the recent $117 million exploit of Mango Markets, according to a proposal on Compound’s governance forum that was recently passed. With the pause, users will not be able to deposit Yearn.finance’s YFI (YFI), 0x’s ZRX, Basic Attention Token (BAT) and Maker’s MKR (MKR) as collateral to take loans. The proposal passed on Oct. 25 with 99% of all voters in favor. It stated: “An oracle manipulation-based attack analogous to the one that cost Mango Markets $117m is much less likely to occur on Compound due to collateral assets having much deeper liquidity than MNGO and Compound requiring loans...
FTX to give a ‘one-time’ $6M compensation to phishing victims
Cryptocurrency exchange FTX will provide around $6 million in compensation to victims of a phishing scam that allowed hackers to conduct unauthorized trades on certain FTX users’ accounts. FTX founder and CEO Sam Bankman-Fried posted in a Twitter thread on Oct. 23 that the exchange generally doesn’t award compensation to its users “phished by fake versions of other companies in the space” but in this case, it would compensate users. Bankman-Fried said that this was a “one-time thing” and FTX would “not do this going forward.” “THIS IS NOT A PRECEDENT,” he wrote, clarifying it was only the accounts of FTX users that would be reimbursed. 14) But this once, we’ll do it; roughly $6m total. (To be clear, only for FTX accounts! Hopefully other exchanges will comp theirs.) BUT AGAIN N...
Gate.io users at risk as scammers fake giveaway on hacked Twitter account
Hackers took over the official Twitter account of crypto exchange Gate.io, putting over 1 million users at risk of losing funds to an ongoing fraudulent Tether (USDT) giveaway. Social media platform Twitter serves as the most effective medium to reach the crypto community. As a result, the trend of hacking into official Twitter handles of verified accounts to promote scams is on the rise. Hackers of unknown origin took over Gate.io’s Twitter account and changed the website URL from Gate.io to gąte.com (https://xn--gte-ipa.com/) — a fraudulent website impersonating the exchange. The fake website is actively promoting a fake giveaway of 500,000 USDT while asking users to connect their wallets (such as MetaMask) to claim the rewards. Once a user connects their wallet to the fake website, the ...
Unsung hero saves DeFi protocol from potential exploit: Finance Redefined
Welcome to Finance Redefined, your weekly dose of essential decentralized finance (DeFi) insights — a newsletter crafted to bring you significant developments over the last week. The last week’s headline was dominated by some of the biggest hacks in DeFi. This week is redemption time for many DeFi protocols that either averted an attempted hack or got a significant chunk of their stolen funds back. The BitBTC bridge reportedly had a bug that would essentially allow an attacker to mint fake tokens on one side of the bridge and swap them for real ones. However, one Twitter user was able to foresee the vulnerability and informed the cross-bridge platform about it. The Moola Market attacker has scored about a half-million dollar “bug bounty” after choosing to return a majority of the cryptocur...
BNB Chain responds with next steps for cross-chain security after network exploit
BNB Chain, the native blockchain of Binance Coin (BNB) and the Binance crypto exchange, has been subject to security-related developments over the last month. On Thursday, Oct. 6 the network experienced a multi-million dollar cross-chain exploit. The incident caused BNB Chain to temporarily suspend all withdrawal and deposit activity on the network. Initially, the announcement of the network outage cited “irregular activity” with an update stating it was “under maintenance.” As rumors were confirmed the CEO of Binance, Changpeng Zhao tweeted out an apology for any inconvenience to the BNB Chain community. However the suspension was brief, as the BNB Chain Team announced the network was back online early on Oct. 7, just hours after the attack. As the network regained activity its validators...
Barely halfway and October already the biggest month in crypto hacks: Finance Redefined
Welcome to Finance Redefined, your weekly dose of essential decentralized finance (DeFi) insights — a newsletter crafted to bring you significant developments over the last week. October is historically associated with the bulls, but in 2022, the month has also become the leader in crypto hacks as barely halfway through, and the DeFi ecosystem has already seen nearly a dozen hacks resulting in losses of hundreds of millions of dollars. The largest hack occurred on Solana’s DeFi platform Mango Markets on Oct. 11, resulting in a loss of over $100 million worth of crypto. The hacker has now come out to demand $70 million in USD Coin (USDC) stablecoin as a bounty to return the stolen crypto. In another hack, TempleDAO was exploited for $2 million on the same day as Mango Market’s exploit. Movi...
Mango Market’s DAO forum set to approve $47M settlement with hacker
Following a $117 million exploit on Oct. 11, the Mango Markets community is set to make a deal with its hacker, allowing the hacker to keep $47 million as a bug bounty, according to the decentralized finance (DeFI) protocol governance forum. The proposed terms reveal that $67 million of the stolen tokens will be returned, while $47 million will be kept by the hacker. 98% of the voters, or 291 million tokens, have voted in favor of the deal, which also stipulates that Mango Markets will not pursue criminal charges on the case. With the quorum reached, the voting is likely to happen on Oct. 15. The proposal stated: “The funds sent by you and the mango DAO treasury will be used to cover any remaining bad debt in the protocol. All mango depositors will be made whole. By voting...
Transit Swap loses over $21M due to internal bug hack, issues apology
Transit Swap, a multi-chain decentralized exchange (DEX) aggregator, lost roughly $21 million after a hacker exploited an internal bug on a swap contract. Following the revelation, Transit Swap issued an apology to the users while efforts to track down and recover the stolen funds are underway. “We are deeply sorry,” stated Transit Swap while revealing that a bug in the code allowed a hacker to make away with an estimated $21 million. Blockchain investigator Peckshield narrowed down the attack to a compatibility issue or misplaced trust in the swap contract. pic.twitter.com/KJ7u5xoxBp — Transit Swap | Transit Buy | NFT (@TransitFinance) October 2, 2022 Peckshield, along with other investigators, including SlowMist, Bitrace and TokenPocket joined in on the pursuit to track down the hacker. ...
MEVbots backdoor drains users’ Ethereum funds via arbitrage trading bot
MEV gain, an Ethereum (ETH) arbitrage trading bot built by MEVbots, which claims to provide stress-free passive income, has been actively draining its users’ funds via a fund-stealing backdoor. Arbitrage bots are programs that automate trading for profits based on historical market information. An investigation of MEVbots’ contract revealed a backdoor that allows the creators to drain Ether from its users’ wallets. Our analysis confirms what the @mevbots promotes for the so-called “MEV gain” has a fund-stealing backdoor. Do *NOT* fall prey to it https://t.co/z2eDqMF36b. And thanks @monkwithchaos for the heads-up https://t.co/dhSNGljoH0 pic.twitter.com/HWfCAwbae4 — PeckShield Inc. (@peckshield) September 23, 2022 The scam was first pointed out by Crypto Twitter’s @mo...
Profanity tool vulnerability drains $3.3M despite 1Inch warning
Decentralized exchange aggregator 1inch Network issued a warning to crypto investors after identifying a vulnerability in Profanity, an Ethereum (ETH) vanity address generating tool. Despite the proactive warning, apparently, hackers were able to make away with $3.3 million worth of cryptocurrencies. On Sept. 15, 1Inch revealed the lack of safety in using Profanity as it used a random 32-bit vector to seed 256-bit private keys. Further investigations pointed out the ambiguity in the creation of vanity addresses, suggesting that Profanity wallets were secretly hacked. The warning came in the form of a tweet, as shown below. RUN, YOU FOOLS 
Spoiler: Your money is NOT SAFU if your wallet address was generated with the Profanity tool. Transfer all of your assets to a different ...
FBI seeks Bitcoin wallet information of ransomware attackers
Three federal agencies in the United States — the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency and the Multi-State Information Sharing and Analysis Center — jointly issued an advisory seeking information to curb ransomware attacks. As part of the #StopRansomware campaign, the joint cybersecurity advisory alerted citizens of Vice Society, a ransomware-type program that encrypts data and demands ransom for decryption. The trio anticipates a spike in ransomware attacks, primarily aimed at educational institutions, adding that “School districts with limited cybersecurity capabilities and constrained resources are often the most vulnerable.” While proactive measures remain vital to counter ransomware, the FBI asked US citizens to report infor...
Elon Musk-crypto video played on S. Korean govt’s hacked YouTube channel
A YouTube channel owned by the government of South Korea was reportedly hacked and renamed SpaceX Invest, following which the channel uploaded fabricated videos of Elon Musk discussing cryptocurrencies. On Sept 3, the South Korean government’s YouTube channel was momentarily hacked and renamed for sharing live broadcasts of crypto-related videos. However, the account was soon restored within four hours following a proactive intervention, confirmed a local report from Yonhap News Agency (YNA). The above screenshot was provided to YNA by a locale that shows the compromised channel being renamed to SpaceX Invest and streaming videos depicting SpaceX CEO Elon Musk. The compromised ID and password of the YouTube channel were identified as the root cause of the hack. Google, too, reportedl...
