Deus Finance $13.4M
https://www.coindesk.com/tech/2022/04/28/how-deus-finance-was-exploited-for-134m-on-fantom/
https://twitter.com/peckshield/status/1519530463337250817?
How Deus Finance Was Exploited for $13.4M on Fantom
The attack, which used a flash loan, was the second in two months.
Topic: DeFi hacks [history] - page 12. (Read 19470 times)
https://www.businessinsider.in/cryptocurrency/news/a-defi-hacker-compromised-a-lesser-known-protocol-but-forgot-to-take-their-winnings/articleshow/91003503.cms
"A DeFi hacker compromised a lesser-known protocol but forgot to take their winnings
The hacker compromised a protocol called Zeed for over $1 million.
DeFi hacks have become a serious concern for the crypto industry over the past year.
Almost 97% of all cryptocurrency stolen in 2022 came from DeFi protocols."
"A DeFi hacker compromised a lesser-known protocol but forgot to take their winnings
The hacker compromised a protocol called Zeed for over $1 million.
DeFi hacks have become a serious concern for the crypto industry over the past year.
Almost 97% of all cryptocurrency stolen in 2022 came from DeFi protocols."
The Chinese company SlowMist, specializing in blockchain security, reported that in the period from April 12 to April 21, Terra network users lost their funds by clicking on phishing links placed in Google ads. Thus, the attacker withdrew funds for $4.31 million, in total assets were withdrawn from 52 addresses.
https://twitter.com/SlowMist_Team/status/1516961951032692736
https://twitter.com/SlowMist_Team/status/1516961951032692736
As a result of the exploit, Beanstalk Farms lost about $182 million from the Defi project, in total, the hacker managed to withdraw funds for about $80 million using the Tornado Cash mixer.
https://twitter.com/PeckShieldAlert/status/1515715931963801603
https://twitter.com/PeckShieldAlert/status/1515715931963801603
https://twitter.com/PeckShieldAlert/status/1515715931963801603
https://twitter.com/PeckShieldAlert/status/1515715931963801603
https://www.theverge.com/2022/4/18/23030754/beanstalk-cryptocurrency-hack-182-million-dao-voting
Beanstalk cryptocurrency project robbed after hacker votes to send themself $182 million
https://decrypt.co/98118/ethereum-defi-protocol-beanstalk-hacked-182-million-what-you-need-know
Ethereum DeFi Protocol Beanstalk Hacked for $182 Million—What You Need to Know
Beanstalk got jacked by a giant flash attack.
https://etherscan.io/tx/0xcd314668aaa9bbfebaf1a0bd2b6553d01dd58899c508d4729fa7311dc5d33ad7
As a result of the exploit, Beanstalk Farms lost about $182 million from the Defi project, in total, the hacker managed to withdraw funds for about $80 million using the Tornado Cash mixer.
https://twitter.com/PeckShieldAlert/status/1515715931963801603
https://twitter.com/PeckShieldAlert/status/1515715931963801603
https://twitter.com/PeckShieldAlert/status/1515715931963801603
https://twitter.com/PeckShieldAlert/status/1515715931963801603
The Defi team of the Elephant Money project reports that it suffered from an exploit as a result of which hackers managed to withdraw 27,416 BNB and 30 billion Elephant tokens worth ~ $22 million from the project.
https://twitter.com/ElephantStatus/status/1514007291116199936
https://medium.com/elephant-money/reserve-exploit-52fd36ccc7e8
https://twitter.com/ElephantStatus/status/1514007291116199936
https://medium.com/elephant-money/reserve-exploit-52fd36ccc7e8
did not find this topic earlier, there is so many DeFi hacks
it is good to see that there are white hackers as well, that find breaches and share with projects, for bounties, projects find it hard to deploy on-chain, without audit, to be fast and grab the market, and that leads to code that is not polished, which leads to hacks
hopefully, numbers will go down in the future, but with more people in the industry, it does seem as inevitable to see more hacks
it is good to see that there are white hackers as well, that find breaches and share with projects, for bounties, projects find it hard to deploy on-chain, without audit, to be fast and grab the market, and that leads to code that is not polished, which leads to hacks
hopefully, numbers will go down in the future, but with more people in the industry, it does seem as inevitable to see more hacks
Starstream Finance $4M
Starstream Finance Hacked, Around $4M Stolen
Starstream Finance had their treasury drained in an exploit and has advised anyone holding funds in AgoraDefi to withdraw them. The Team has announced this incident on their official Discord.
Starstream Finance Hacked, Around $4M Stolen
Starstream Finance had their treasury drained in an exploit and has advised anyone holding funds in AgoraDefi to withdraw them. The Team has announced this incident on their official Discord.
WonderHero game disabled after hackers steal $320,000 in cryptocurrency
The operators of cryptocurrency play-to-earn game WonderHero have disabled the service after hackers stole about $320,000 worth of Binance Coin (BNB).
The attack caused the price of WonderHero’s own coin, WND, to plummet more than 90%.
https://therecord.media/wonderhero-game-disabled-after-hackers-steal-320000-in-cryptocurrency/
The operators of cryptocurrency play-to-earn game WonderHero have disabled the service after hackers stole about $320,000 worth of Binance Coin (BNB).
The attack caused the price of WonderHero’s own coin, WND, to plummet more than 90%.
https://therecord.media/wonderhero-game-disabled-after-hackers-steal-320000-in-cryptocurrency/
New scam SberCoin.Finance
https://coinmarketcap.com/currencies/sber/
Trading in the SBER token has been launched under the guise of the official stablecoin of Sberbank.
Account suspended
https://twitter.com/SberCoinBsc
https://forklog.com/neizvestnye-zapustili-fejkovyj-sberkoin-na-birzhe-pancakeswap/
https://coinmarketcap.com/currencies/sber/
Trading in the SBER token has been launched under the guise of the official stablecoin of Sberbank.
Account suspended
https://twitter.com/SberCoinBsc
https://forklog.com/neizvestnye-zapustili-fejkovyj-sberkoin-na-birzhe-pancakeswap/
Crypto 2022: Hackers have nabbed $1.22 billion already
Hackers so far are focusing on decentralized finance (DeFi) projects to steal crypto this year, a new report found, a reversal from 2021 when they used scams and online fraud for most of their exploits.
So far, investors have lost over $1.22 billion to hackers in the first three months of the year, nearly eight times more than the $154 million lost in the first quarter of 2021, according to crypto security firm Immunefi. Ninety-nine percent of those losses were from software exploits, the report found, specifically the hacks against Wormhole and Ronin.
source
https://finance.yahoo.com/news/crypto-hackers-stolen-173940395.html
Hackers so far are focusing on decentralized finance (DeFi) projects to steal crypto this year, a new report found, a reversal from 2021 when they used scams and online fraud for most of their exploits.
So far, investors have lost over $1.22 billion to hackers in the first three months of the year, nearly eight times more than the $154 million lost in the first quarter of 2021, according to crypto security firm Immunefi. Ninety-nine percent of those losses were from software exploits, the report found, specifically the hacks against Wormhole and Ronin.
source
https://finance.yahoo.com/news/crypto-hackers-stolen-173940395.html
https://blog.openzeppelin.com/15-billion-rugpull-vulnerability-in-convex-finance-protocol-uncovered-and-resolved/
$15 Billion Rugpull Vulnerability in Convex Finance protocol Uncovered and Resolved
APRIL 4, 2022
"TLDR: In late 2021, as part of a security audit for a client, OpenZeppelin conducted a security review of the Convex Finance protocol. As part of the audit, the Security Research Team uncovered a vulnerability that, if exploited by two of three anonymous multi-signature wallet (multisig) signers, would have given the Convex multisig direct control over Convex’s locked value—then approximately $15 billion. Convex documentation specifically stated such control was not possible. This vulnerability has since been patched by the Convex Team."
$15 Billion Rugpull Vulnerability in Convex Finance protocol Uncovered and ResolvedAPRIL 4, 2022
"TLDR: In late 2021, as part of a security audit for a client, OpenZeppelin conducted a security review of the Convex Finance protocol. As part of the audit, the Security Research Team uncovered a vulnerability that, if exploited by two of three anonymous multi-signature wallet (multisig) signers, would have given the Convex multisig direct control over Convex’s locked value—then approximately $15 billion. Convex documentation specifically stated such control was not possible. This vulnerability has since been patched by the Convex Team."
This is how scammers steal NFT tokens
Don't click on stealth mints, and especially don't approve "SET APPROVAL FOR ALL" transactions. They have a script that gets your most valuable NFTs and requests token approval access for them, then transfers it to the scammer's wallet.
https://twitter.com/serpentau/status/1509785117577064448?
Don't click on stealth mints, and especially don't approve "SET APPROVAL FOR ALL" transactions. They have a script that gets your most valuable NFTs and requests token approval access for them, then transfers it to the scammer's wallet.
https://twitter.com/serpentau/status/1509785117577064448?
Inverse Finance $15.6 million
https://www.coindesk.com/tech/2022/04/02/defi-lender-inverse-finance-exploited-for-156-million/
DeFi Lender Inverse Finance Exploited for $15.6M
It is the third multimillion-dollar crypto attack to make headlines in recent days.
https://twitter.com/bertcmiller/status/1510284763332071427?s=21
"The attack is a little more nuanced than I / others thought. Brief thread."
https://www.coindesk.com/tech/2022/04/02/defi-lender-inverse-finance-exploited-for-156-million/
DeFi Lender Inverse Finance Exploited for $15.6M
It is the third multimillion-dollar crypto attack to make headlines in recent days.
https://twitter.com/bertcmiller/status/1510284763332071427?s=21
"The attack is a little more nuanced than I / others thought. Brief thread."
Bored Ape Yacht Club (BAYC) Discord Hacked, NFT Stolen
https://coingape.com/bored-ape-bayc-discord-hacked-nft-stolen/
Separately, Taiwanese singer Jay Chou said his tokens were stolen in a phishing attack. The stolen goods included a BAYC, a Mutant Ape Yacht Club, two Doodles, and 169 ETH ($549,000), according to data from Etherscan
https://coingape.com/bored-ape-bayc-discord-hacked-nft-stolen/
Separately, Taiwanese singer Jay Chou said his tokens were stolen in a phishing attack. The stolen goods included a BAYC, a Mutant Ape Yacht Club, two Doodles, and 169 ETH ($549,000), according to data from Etherscan
STAY SAFE. Do not mint anything from any Discord right now. A webhook in our Discord was briefly compromised. We caught it immediately but please know: we are not doing any April Fools stealth mints / airdrops etc. Other Discords are also being attacked right now.
Community Alert: Ronin Validators Compromised
https://roninblockchain.substack.com/p/community-alert-ronin-validators?s=r
The huge compromise because of very low validators on a very centralized network like Ronin is undirectly convincing me that Ethereum is bigger and better than Binance Smart Chain.https://roninblockchain.substack.com/p/community-alert-ronin-validators?s=r
People should know how big Ethereum network is in their total hashrate and how many validators on Ethereum network. Let's compare it to total validators on Binance Smart Chain. I am sure they will see how Ethereum is much safer and more healthy than Binance Smart Chain.
About Axie Infinity, I don't know why their team naively or carelessly to set up too low number of validators to approve transactions on Ronin chain.
Rare Bears Discord phishing attack nabs $800K in NFTs
https://cointelegraph.com/news/rare-bears-discord-phishing-attack-nabs-800k-in-nfts
https://twitter.com/BearsRare/status/1504293859467350019?
"Discord has unfortunately been compromised. Please DO NOT click any links, connect your wallet and block all incoming DMs in our discord. Our team are working on the situation as we speak 🙏🏼"
_____________
$622M Ronin sidechain hack
Axie Infinity Tokens AXS, SLP Reeling After $622M Ronin Hack
https://decrypt.co/96433/axie-infinity-tokens-axs-slp-reeling-622m-ronin-hack
A day after Sky Mavis disclosed that a hacker stole 173,600 ETH worth $622 million from the Ronin sidechain, the Axie Infinity Shards (AXS) and Smooth Love Potion (SLP) tokens are still reeling.
Community Alert: Ronin Validators Compromised
https://roninblockchain.substack.com/p/community-alert-ronin-validators?s=r
https://cointelegraph.com/news/rare-bears-discord-phishing-attack-nabs-800k-in-nfts
https://twitter.com/BearsRare/status/1504293859467350019?
"Discord has unfortunately been compromised. Please DO NOT click any links, connect your wallet and block all incoming DMs in our discord. Our team are working on the situation as we speak 🙏🏼"
_____________
$622M Ronin sidechain hack
Axie Infinity Tokens AXS, SLP Reeling After $622M Ronin Hack
https://decrypt.co/96433/axie-infinity-tokens-axs-slp-reeling-622m-ronin-hack
A day after Sky Mavis disclosed that a hacker stole 173,600 ETH worth $622 million from the Ronin sidechain, the Axie Infinity Shards (AXS) and Smooth Love Potion (SLP) tokens are still reeling.
Community Alert: Ronin Validators Compromised
https://roninblockchain.substack.com/p/community-alert-ronin-validators?s=r
The OneRing Finance DeFi protocol was subjected to a hacker attack, as a result of which the attacker managed to seize funds worth about $2 million. The hacker used a script to execute an instant loan, which had a self-destruct mechanism and, as the developers stated, this makes it very difficult to find the vulnerabilities used. To perform the exploit, the attacker placed a special smart contract on the Fantom platform.
Source: https://medium.com/oneringfinance/onering-finance-exploit-post-mortem-after-oshare-hack-602a529db99b
Source: https://medium.com/oneringfinance/onering-finance-exploit-post-mortem-after-oshare-hack-602a529db99b
Li Finance protocol loses $600,000 in latest DeFi exploit
https://cointelegraph.com/news/li-finance-protocol-loses-600-000-in-latest-defi-exploit
The Li Finance swap aggregator has experienced a smart contract exploit leading to the loss of around $600,000 from 29 users’ wallets.
https://twitter.com/lifiprotocol/status/1505738407938387971?
https://cointelegraph.com/news/li-finance-protocol-loses-600-000-in-latest-defi-exploit
The Li Finance swap aggregator has experienced a smart contract exploit leading to the loss of around $600,000 from 29 users’ wallets.
https://twitter.com/lifiprotocol/status/1505738407938387971?
The Rare Bears project team reported that on March 16, a hacker using a phishing attack on users of the Rare Bears Discord channel was able to seize 179 NFT Bears tokens, thus emptying the project on 286 ETH.
Jump to: