Celer Network
https://twitter.com/CelerNetwork/status/1560022871564775424
"📢📢📢We are seeing reports that reflects potential DNS hijacking of cbridge frontend. We are investigating at the moment and please do not use the frontend for bridging at the moment."
https://twitter.com/CelerNetwork/status/1560046913436946432
"📢📢📢If you recently used cBridge, please make sure to check and revoke any token approval for the following contracts:
Ethereum: 0x2A2aA50450811Ae589847D670cB913dF763318E8
BSC: 0x5895da888Cbf3656D8f51E5Df9FD26E8E131e7CF
(cont' in next thread)"
____
Ronin $625M
https://cointelegraph.com/news/ronin-hackers-transferred-stolen-funds-from-eth-to-btc-and-used-sanctioned-mixers
Ronin hackers transferred stolen funds from ETH to BTC and used sanctioned mixers
"The hackers continue to spread out the stolen funds using Bitcoin privacy tools as a means to remain anonymous, despite the identity of the hackers believed to be a North Korean cybercrime group."
Topic: DeFi hacks [history] - page 10. (Read 19119 times)
A lot of DeFi DApps get hacked because they have very complicated contracts and this is a new technology. Staking on audited platforms like HEX and MAXX finance are much safer however. HEX has been live for a couple years now without issue and the contracts behind these projects are well proven and safer because they involve staking and not complicated bridges or swaps etc. In fact, it's often more profitable to stake on platforms like MAXX finance or Alchemix than it is to lend or use farms.
https://twitter.com/AcalaNetwork/status/1558642849649856512
Acala Network suffered from an exploit that modified the configuration of the Honzon protocol, with which hackers managed to print 1.2 billion AUSD in Acala Network, as a result of which the price of the AUSD stablecoin dropped to $0.05.
https://twitter.com/WatcherGuru/status/1558735108672065538
Acala Network suffered from an exploit that modified the configuration of the Honzon protocol, with which hackers managed to print 1.2 billion AUSD in Acala Network, as a result of which the price of the AUSD stablecoin dropped to $0.05.
https://twitter.com/WatcherGuru/status/1558735108672065538
https://crypto-academy.org/36-million-back-to-nomad-bridge-recovery-account/
Over $36 Million Back to Nomad Bridge’s Recovery Account
"The wallet, identified by Etherscan as the “official Nomad funds recovery address,” has received ETH 2,179.5 (equal to about $3.9 million), USDC 9.77 million, USDT 5 million, WBTC 196 ($4.7 million), DAI 3.7 million, as well as various sums of other ERC-20 tokens."
https://www.coindesk.com/business/2022/08/09/defi-protocol-curvefinance-hacked-570k-stolen/
DeFi Protocol Curve.Finance Gets Hacked and $570K Is Stolen
The source of the hack has been “found and reverted,” according to the protocol.
Over $36 Million Back to Nomad Bridge’s Recovery Account
"The wallet, identified by Etherscan as the “official Nomad funds recovery address,” has received ETH 2,179.5 (equal to about $3.9 million), USDC 9.77 million, USDT 5 million, WBTC 196 ($4.7 million), DAI 3.7 million, as well as various sums of other ERC-20 tokens."
https://www.coindesk.com/business/2022/08/09/defi-protocol-curvefinance-hacked-570k-stolen/
DeFi Protocol Curve.Finance Gets Hacked and $570K Is Stolen
The source of the hack has been “found and reverted,” according to the protocol.
Issues in the Solana Ecosystem
https://twitter.com/SolanaStatus/status/1554695981781901312
"An exploit allowed a malicious actor to drain funds from a number of wallets on Solana. As of 5am UTC approximately 7,767 wallets have been affected.
The exploit has affected several wallets, including Slope and Phantom. This appears to have affected both mobile and extension."
https://twitter.com/SolanaStatus/status/1554695981781901312
"An exploit allowed a malicious actor to drain funds from a number of wallets on Solana. As of 5am UTC approximately 7,767 wallets have been affected.
The exploit has affected several wallets, including Slope and Phantom. This appears to have affected both mobile and extension."
It seems to me that Solana had constant failures in the mainnet, there is only one question who can be behind the emptying of users' wallets, perhaps the Solana protocol has a number of vulnerabilities that the developers are silent about or do not know about.
"After an investigation by developers, ecosystem teams, and security auditors, it appears affected addresses were at one point created, imported, or used in Slope mobile wallet applications. 1/2"
Read this thread on twitter. Looks like one of the wallets has a problem.
Issues in the Solana Ecosystem
https://twitter.com/SolanaStatus/status/1554695981781901312
"An exploit allowed a malicious actor to drain funds from a number of wallets on Solana. As of 5am UTC approximately 7,767 wallets have been affected.
The exploit has affected several wallets, including Slope and Phantom. This appears to have affected both mobile and extension."
https://twitter.com/SolanaStatus/status/1554695981781901312
"An exploit allowed a malicious actor to drain funds from a number of wallets on Solana. As of 5am UTC approximately 7,767 wallets have been affected.
The exploit has affected several wallets, including Slope and Phantom. This appears to have affected both mobile and extension."
It seems to me that Solana had constant failures in the mainnet, there is only one question who can be behind the emptying of users' wallets, perhaps the Solana protocol has a number of vulnerabilities that the developers are silent about or do not know about.
Issues in the Solana Ecosystem
https://twitter.com/SolanaStatus/status/1554695981781901312
"An exploit allowed a malicious actor to drain funds from a number of wallets on Solana. As of 5am UTC approximately 7,767 wallets have been affected.
The exploit has affected several wallets, including Slope and Phantom. This appears to have affected both mobile and extension."
https://twitter.com/SolanaStatus/status/1554695981781901312
"An exploit allowed a malicious actor to drain funds from a number of wallets on Solana. As of 5am UTC approximately 7,767 wallets have been affected.
The exploit has affected several wallets, including Slope and Phantom. This appears to have affected both mobile and extension."
Nomad Bridge lost more than $150 million as a result of an exploit that was active for some time, the greatest damage was caused to the networks of EVMOS, Moonbeam, as it turned out, the main reason was a fatal error in the Replica contract, which is responsible for issuing funds.
https://twitter.com/samczsun/status/1554252024723546112
https://twitter.com/samczsun/status/1554252024723546112
28 July 2022
Nirvana - $3.5 million flash loan exploit
https://www.theblock.co/post/159975/solana-stablecoin-nirvana-sinks-90-amid-3-5-million-flash-loan-exploit
https://nitter.net/PeckShieldAlert/status/1552589510986215425
https://nitter.net/AndyBTC_/status/1552546781929639937
Flash loan exploit, again, and yet again
Nirvana - $3.5 million flash loan exploit
https://www.theblock.co/post/159975/solana-stablecoin-nirvana-sinks-90-amid-3-5-million-flash-loan-exploit
https://nitter.net/PeckShieldAlert/status/1552589510986215425
#PeckShieldAlert Seems like @nirvana_fi
exploited @peckshield
Exploiters already bridged stolen funds to Ethereum 0xB9AE2624Ab08661F010185d72Dd506E199E67C09
exploited @peckshield
Exploiters already bridged stolen funds to Ethereum 0xB9AE2624Ab08661F010185d72Dd506E199E67C09
https://nitter.net/AndyBTC_/status/1552546781929639937
Looks like @nirvana_fi
got hacked. Someone drained the protocol via what looks like a flash loan attack for ~3mil USDT. They've sent it to ETH mainnet via wormhole, and converted it to DAI. #opsec #crypto #hack #cryptohack
This is the eth address:
got hacked. Someone drained the protocol via what looks like a flash loan attack for ~3mil USDT. They've sent it to ETH mainnet via wormhole, and converted it to DAI. #opsec #crypto #hack #cryptohack
This is the eth address:
Flash loan exploit, again, and yet again
$1.1 million music streaming protocol Audius
https://www.theblock.co/post/159308/hacker-pockets-1-1-million-after-stealing-from-music-streaming-protocol-audius?
Hacker pockets $1.1 million after stealing from music streaming protocol Audius
"Audius was hacked using a malicious governance vote.
The hacker transferred 18 million AUDIO tokens and sold them for $1.1 million."
https://www.theblock.co/post/159308/hacker-pockets-1-1-million-after-stealing-from-music-streaming-protocol-audius?
Hacker pockets $1.1 million after stealing from music streaming protocol Audius
"Audius was hacked using a malicious governance vote.
The hacker transferred 18 million AUDIO tokens and sold them for $1.1 million."
https://twitter.com/PREMINT_NFT/status/1548578432920850432
PREMINT hack $400000
https://decrypt.co/105385/300-nfts-stolen-400k-in-ethereum-taken-in-premint-hack
300+ NFTs Stolen, $400K in Ethereum Taken In Premint Hack
Hackers infiltrated the popular NFT registration platform and used a fake pop-up to coerce users into giving up their wallet information.
PREMINT hack $400000
https://decrypt.co/105385/300-nfts-stolen-400k-in-ethereum-taken-in-premint-hack
300+ NFTs Stolen, $400K in Ethereum Taken In Premint Hack
Hackers infiltrated the popular NFT registration platform and used a fake pop-up to coerce users into giving up their wallet information.
https://beincrypto.com/uniswap-8m-ethereum-massive-phishing-attack/
Uniswap Users Lose Over $8M Worth of Ethereum in Massive Phishing Attack
"Some individuals using Uniswap V3 have suffered a phishing attack. The attacker has stolen over 7,500 ETH, worth about $8.1 million.
Several users have lost ETH after experiencing a phishing attack using the Uniswap V3 protocol. Numerous sources are reporting that over 7,500 ETH was stolen. The incident has nothing to do with the Uniswap protocol itself, rather than the victims approved malicious transactions."
Uniswap Users Lose Over $8M Worth of Ethereum in Massive Phishing Attack
"Some individuals using Uniswap V3 have suffered a phishing attack. The attacker has stolen over 7,500 ETH, worth about $8.1 million.
Several users have lost ETH after experiencing a phishing attack using the Uniswap V3 protocol. Numerous sources are reporting that over 7,500 ETH was stolen. The incident has nothing to do with the Uniswap protocol itself, rather than the victims approved malicious transactions."
The OMNI protocol suffered from the actions of a hacker who managed to withdraw more than 1300 ETH, the developers themselves say that they lost only the funds used for the beta version test and the users' funds are not affected.
https://twitter.com/peckshield/status/1546096506159058947
https://twitter.com/OMNI_xyz/status/1546143829375459332
https://twitter.com/peckshield/status/1546096506159058947
https://twitter.com/OMNI_xyz/status/1546143829375459332
Evmos Name Service hack
https://twitter.com/EvmosNS/status/1543500126186278912
"New Smart Contract Deployed 0xD3D001724aB1C76809b9f7c2C5a2eBfc625Ee1a4
https://app.evmosnameservice.com
Old Smart contract domains not displayed in dApp
We will share a recovery plan for old contract registered domain users.
Hacked contract 0xEcF5cB1250c2e73a70636a24746aB269d40D01bA"
https://twitter.com/EvmosNS/status/1543500572917366784
"Everyone can able to register domains in the new smart contract http://app.evmosnameservice.com
We will share a recovery plan for hacked contract registered domain holders."
https://twitter.com/EvmosNS/status/1543500126186278912
"New Smart Contract Deployed 0xD3D001724aB1C76809b9f7c2C5a2eBfc625Ee1a4
https://app.evmosnameservice.com
Old Smart contract domains not displayed in dApp
We will share a recovery plan for old contract registered domain users.
Hacked contract 0xEcF5cB1250c2e73a70636a24746aB269d40D01bA"
https://twitter.com/EvmosNS/status/1543500572917366784
"Everyone can able to register domains in the new smart contract http://app.evmosnameservice.com
We will share a recovery plan for hacked contract registered domain holders."
The hacker returns 6,064 ETH and 23,967.9 SOL stolen by him from the Crema Finance protocol, as a reward, the hacker left 45,455 SOL for himself. According to the Crema Finance team, they managed to reach such an agreement thanks to lengthy negotiations with the attacker.
https://twitter.com/Crema_Finance/status/1544792330674135040
https://twitter.com/Crema_Finance/status/1544792330674135040
Hackers have emptied the $6 million Crema Finance liquidity pool, according to blockchain auditor OtterSec hackers used flash loans on the Solend landing platform. Crema Finance was forced to suspend the operation of its application.
https://twitter.com/osec_io/status/1543469811287465984
https://twitter.com/Crema_Finance/status/1543416225622941696
https://twitter.com/osec_io/status/1543469811287465984
https://twitter.com/Crema_Finance/status/1543416225622941696
Optimism NFT marketplace Quixotic as a result of an exploit caused by an unsuccessful contract update, which was used by a hacker, lost $100,000 in ERC - 20 tokens< the Quixotic team informs that all tokens will be returned to the owners, and their NFTs are safe.
https://twitter.com/quixotic_io/status/1542790067130978307
https://twitter.com/quixotic_io/status/1542790067130978307
https://decrypt.co/104138/north-korean-attackers-behind-100m-harmony-hack-report
North Korean Attackers Behind $100M Harmony Hack: Report
"Analysis suggests the hack is the work of the Lazarus Group, the Pyongyang-backed group behind a similar $622 million hack of Axie Infinity.
According to a report released today by blockchain analytics firm Elliptic, the manner in which the funds were stolen and subsequently laundered points to the involvement of The Lazarus Group, a notorious North Korea-affiliated cybercriminal organization."
North Korean Attackers Behind $100M Harmony Hack: Report
"Analysis suggests the hack is the work of the Lazarus Group, the Pyongyang-backed group behind a similar $622 million hack of Axie Infinity.
According to a report released today by blockchain analytics firm Elliptic, the manner in which the funds were stolen and subsequently laundered points to the involvement of The Lazarus Group, a notorious North Korea-affiliated cybercriminal organization."
The Harmony team notifies about the loss of assets worth ~ $ 100 million (85,867 ETH) as a result of a successful hacker attack on the Horizon cross-chain bridge, the developers have contacted law enforcement agencies and an investigation of the incident has been launched.
hacker's address: https://etherscan.io/address/0x0d043128146654c7683fbf30ac98d7b2285ded00
https://twitter.com/harmonyprotocol/status/1540110924400324608
hacker's address: https://etherscan.io/address/0x0d043128146654c7683fbf30ac98d7b2285ded00
https://twitter.com/harmonyprotocol/status/1540110924400324608
Inverse Finance Loses $1.2M to Hackers
https://coinfomania.com/defi-protocol-inverse-finance-hacked-again-for-1-2m/
"PeckShield said the attack was initiated with a flash loan worth 27,000 Wrapped Bitcoin (WBTC). The large deposit received from the loan was then used to manipulate the price of the protocol’s pool of funds. In the process, assets such as Tether USD (USDT), DOLA, Wrapped Bitcoin (WBTC), and Curve DAO token (CRV) were used."
https://twitter.com/peckshield/status/1537382891230883841
https://coinfomania.com/defi-protocol-inverse-finance-hacked-again-for-1-2m/
"PeckShield said the attack was initiated with a flash loan worth 27,000 Wrapped Bitcoin (WBTC). The large deposit received from the loan was then used to manipulate the price of the protocol’s pool of funds. In the process, assets such as Tether USD (USDT), DOLA, Wrapped Bitcoin (WBTC), and Curve DAO token (CRV) were used."
https://twitter.com/peckshield/status/1537382891230883841
Jump to: