Pages:
Author

Topic: DeFi hacks [history] - page 3. (Read 19375 times)

legendary
Activity: 1708
Merit: 1615
Payment Gateway Allows Recurring Payments
November 06, 2023, 11:43:31 AM
FixedFloat blocked coins from hacker group Lazarus
Thanks to the coordinated efforts of our team over the past three days, an attempt to launder stolen funds associated with the hacker group Lazarus from the DPRK has been successfully thwarted.✔️

The total amount of funds subject to blocking amounted to about two million dollars. 💵

We will continue to work towards enhancing the security and reliability of our services. 🚀

Source:
https://twitter.com/FixedFloat/status/1720448805303161327
legendary
Activity: 1932
Merit: 4602
November 01, 2023, 01:18:15 PM
https://cointelegraph.com/news/onyx-protocol-exploiter-siphon-2-1-m-loot-tornado-cash
"Decentralized peer-to-peer lending platform Onyx Protocol lost roughly $2.1 million in an exploit of a market with no liquidity that was deployed on Oct. 27.

The Onyx Protocol hacker exploited a known bug, a rounding issue behind the popular CompoundV2 fork, explained blockchain investigator PeckShield soon after alerting about the hack that went unnoticed by the protocol."
legendary
Activity: 1932
Merit: 4602
October 26, 2023, 07:52:21 AM
https://twitter.com/DeDotFiSecurity/status/1717327912410456355

"🚨 ~$743,000 Exit Scam Alert 🚨

Fake $LINEA token has been rug pulled earlier today, previously flagged with a Rug Pull High Risk issue

@DeDotFi
 Scanner also identified token as a Honeypot

All the stolen funds were transferred to Tornado Cash"
legendary
Activity: 1820
Merit: 1121
October 25, 2023, 09:34:18 AM
How Hackers Attacked Telegram Trading Bot to Steal $500,000
Hackers exploited a vulnerability in the Maestro Router 2 smart contract, stealing 280 ETH ($500,000) from Telegram trading bot Maestro.
The Maestro attack resulted in a 30% drop in JOE tokens' price due to lack of liquidity. The stolen ETH was transferred to Railgun, a crypto privacy tool.
Despite the hack, Maestro refunded all affected users by purchasing and returning the lost tokens. The bot has earned over $20 million in fees in 2

https://beincrypto.com/maestro-refunds-after-attack/
legendary
Activity: 1932
Merit: 4602
October 18, 2023, 10:25:09 AM
https://cointelegraph.com/news/stars-arena-recovers-stolen-funds-after-offering-bounty-exploit

Stars Arena recovers 90% of stolen funds after offering $257K bounty
"The exploiter of the Web3 social media platform agreed to keep a 10% bounty in exchange for returning the remainder of the stolen funds.
Web3 social media platform Stars Arena said it has recovered nearly all of the crypto stolen from an Oct. 7 exploit, minus a 10% bounty to the person responsible.

In an Oct. 11 X (Twitter) post, Stars Arena said around 90% of the 266,000 Avalanche exploited, at the time worth around $3 million, was returned after reaching an agreement to give a 27,610-AVAX bounty worth nearly $257,000 to the exploiter.

The bounty also included compensation for 1,000 AVAX worth over $9,000 seemingly lost by the exploiter in a bridge."
newbie
Activity: 28
Merit: 0
October 18, 2023, 09:58:50 AM
MEV bot earned $1.5 million thanks to a $4 attack
https://wixi.exchange/en/news/3479042.html
legendary
Activity: 1932
Merit: 4602
October 12, 2023, 07:46:24 AM
https://cryptonews.com/news/defi-protocol-platypus-finance-hacked-for-over-2-million-avalanche-heres-what-happened.htm

DeFi Protocol Platypus Finance Hacked for Over $2 Million on Avalanche

"Decentralized finance (DeFi) protocol Platypus Finance has fallen victim to a security breach resulting in the loss of over $2 million.

In a recent blog post on X (formerly Twitter), security firm PeckShield noted that the Avalanche-based project has been exploited.

Following the alert, Platypus Finance confirmed that there had been suspicious activities in the protocol, prompting the project to take "the proactive measure of temporarily suspending all pools.""
sr. member
Activity: 1456
Merit: 326
Eloncoin.org - Mars, here we come!
October 11, 2023, 02:44:40 PM
Star arena ,a best social platform experience defi hacking. The hackers able to access their contract and exploit a reentrancy vulnerability within the code which allowed them to inflate the share's value, reaching approximately $274K per share. Hackers steal almost 2.9 million worth of AVAX token. This hacks happened in October 2023.
Defi hacking is increased so much in 2023 and most of hacker target contract address and this hacks also is part of it. Need lot of protection and audit check everytime.

SOURCE

https://www.halborn.com/blog/post/explained-the-stars-arena-hack-october-2023

legendary
Activity: 1820
Merit: 1121
October 11, 2023, 12:59:54 PM
Galxe platform experiences DNS attack, losses top $150K
The Web3 platform’s website has been restored, but the company still warns against using it. The hack may be linked to September’s attack on Balancer.

The website of Web3 community platform Galxe was offline for about an hour on Oct. 6. Galxe reported on X (formerly Twitter) that its website was down at 14:44 UTC, confirming 40 minutes later that it had experienced a security breach affecting its Domain Name System (DNS) record. It warned against visiting the domain until the situation was remedied.

At the time of writing, Galxe had not confirmed that its website was safe to use again. After the website was restored, some X posters were reporting that it was blocked by Google.



https://cointelegraph.com/news/galxe-protocol-experiences-dns-attack-october-6
legendary
Activity: 1932
Merit: 4602
October 04, 2023, 01:22:55 PM
https://russia.postsen.com/local/484395/Fraudsters-began-to-take-advantage-of-the-departure-of-the-Binance-crypto-exchange-from-Russia.html
"The largest cryptocurrency platform Binance announced its final departure from Russia a week ago. However, cyber fraudsters are already trying to make money from this. “In the first five days, several fake groups were created on Telegram, eight fake tokens, one of which had a daily trading volume of $130,000, and, of course, a classic scam began on the P2P marketplace,” the CEO of CommEX (the buyer of the Russian business Binance) told Forbes ) for the development of the region and the CIS Anton Toroptsev"
legendary
Activity: 1820
Merit: 1121
October 04, 2023, 06:28:37 AM
Combining all the incidents in September we’ve confirmed ~$332M lost to exploits, hacks and scams.

Exit scams were ~$1.9M

Flash loans were ~$0.4M

Exploits were ~$329.8M

Picture and graphics

https://twitter.com/CertiKAlert/status/1708094695832682893

Cumulative losses since the beginning of the year amount to approximately 1.34 billion dollars, including various hacks for 925.4 million.
https://bitcointalksearch.org/topic/m.62936942

legendary
Activity: 1932
Merit: 4602
September 28, 2023, 04:51:25 AM
https://dune.com/21co/lazarus-group-crypto-holdings
"This dashboard tracks the crypto holdings of the cybercrime unit Lazarus Group (also known as APT38), which has conducted multiple hacks on behalf of the North Korean government. In total, we track 295 wallets identified by the U.S. Federal Bureau of Investigation (FBI) and Office of Foreign Assets Control (OFAC). For context, these are the largest hacks conducted by the Lazarus Group, as confirmed by the FBI:

March 29, 2022: ~$620 million theft from Sky Mavis’ Ronin Bridge.
June 22, 2022: ~$100 million Harmony’s Horizon Bridge hack.
June 2023: ~$100 million theft from Atomic Wallet.
July 22, 2023: ~$60 million theft from Alphapo.
July 22, 2023: ~$37 million theft from CoinsPaid.
September 4, 2023: ~$41 million theft from Stake.com.
We should note that this is a lower-bound estimation of Lazarus Group’s crypto holdings based on publicly available information. If you have identified or are aware of any other hacks that have been disclosed, please get in touch with us so we can track the assets here.

Find the reports of the FBI disclosing the wallet addresses here: January 23, 2023, August 22, 2023, September 6, 2023."
legendary
Activity: 1820
Merit: 1121
September 27, 2023, 01:19:50 PM
Amazing Korean exchange upbit incident today

1. The Largest S.Korean exchange 
@Official_Upbit
 , abruptly halted Aptos' deposits and withdrawals, citing a wallet system maintenance without any specific reason

2. Various Korean users have posted authentication claiming that they received $APT without sending themselves

3. Reports have emerged that the Upbit customer center has been making phone calls to users who sold the deposited FAKE-APT tokens, requesting refunds.

4. What's so fucked up about this situation is that the deposited tokens are not the native
@Aptos_Network
 coin but a scam token called ClaimAPTGift
The only explanation for this situation is that Upbit's wallet system only checked the type and data and processed deposits and withdrawals


Scam token's address
https://apscan.io/account/0xc4f4e73e689b13799d6a1a52a9db1e0099de2e16967ca9bff97e9946dbedc4e9

https://twitter.com/definalist/status/1705900412208029894
legendary
Activity: 1932
Merit: 4602
September 27, 2023, 07:03:36 AM
https://www.coindesk.com/tech/2023/09/25/mixin-network-losses-nearly-200m-in-hack/
"Mixin Network has confirmed a report from SlowMist, a blockchain security consultancy, that it has been hacked for nearly $200 million.
“In the early morning of September 23…the database of Mixin Network's cloud service provider was attacked by hackers, resulting in the loss of some assets on the mainnet,” Mixin Network said in a statement. “The funds involved are approximately US$200 million.”
Mixin Network is a service similar to a layer-2 protocol, designed to make cross-chain transfers cheaper and more efficient.
But the problem with this, as many have pointed out on Twitter, is that it's reliant on a centralized database, creating a single point of failure."
legendary
Activity: 1708
Merit: 1615
Payment Gateway Allows Recurring Payments
September 20, 2023, 10:21:12 AM
It has come to our notice that Harbor protocol has been exploited over the past few hours, resulting in a drain on a portion of the funds sitting in the stable-mint and stOSMO, LUNA and WMATIC vaults.
exploit against a Harbor DeFi protocol ​​
$250,000 losses
Over $7m Stolen in Separate Attacks Against DeFi Protocols Exactly And Harbor
https://www.bitdegree.org/crypto/news/over-7m-stolen-in-separate-attacks-against-defi-protocols-exactly-and-harbor


GMBL Computer, a DeFi gambling protocol, was exploited for nearly 500 ETH, worth around $800,000 in today's prices.
The hacker's identity is known, and GMBL has offered a bounty for the return of funds to avoid legal action.
Despite accusations of an inside job, GMBL reported that half the stolen funds have already been recovered.
https://beincrypto.com/defi-gmbl-computer-exploited-eth-funds-returned/
legendary
Activity: 1932
Merit: 4602
September 06, 2023, 11:35:51 AM
https://www.bleepingcomputer.com/news/security/crypto-casino-stakecom-loses-41-million-to-hot-wallet-hackers/
Crypto casino Stake.com loses $41 million to hot wallet hackers

"Online cryptocurrency casino Stake.com announced that its ETH/BSC hot wallets had been compromised to perform unauthorized transactions, with over $40 million in crypto reportedly stolen.

The platform immediately reassured users that their funds were safe, and all other wallets not directly impacted by the attack, including those holding BTC, LTC, XRP, EOS, and TRX, remained fully operational."

___
https://twitter.com/peckshieldalert/status/1698870451815285045
"PeckShieldAlert A total of ~$41M worth of cryptos were drained from Stake.com , with ~$15.7M on #Ethereum (9.62K $ETH), ~$7.85M on #Polygon (14.24M $MAITC), and $17.75M on #BNBChain (82.65K $BNB)"
legendary
Activity: 1708
Merit: 1615
Payment Gateway Allows Recurring Payments
September 06, 2023, 10:32:13 AM
North Korean hackers have allegedly stolen hundreds of millions in crypto to fund nuclear programs
North Korea-linked hackers stole $200 million worth of crypto from January to Aug. 18, accounting for over 20% of all stolen crypto this year, according to a recent report by TRM Labs.
https://www.cnbc.com/2023/09/06/north-korea-hackers-stole-crypto-to-fund-nuclear-program-trm-chainalysis.html
legendary
Activity: 1932
Merit: 4602
August 30, 2023, 08:41:39 AM
https://www.theblock.co/post/246196/exactly-protocol-exploited-7-million-optimism-layer-2-network
"The exploit has resulted in estimated losses of over $7 million, according to security firms.

Exactly Protocol, a DeFi project that offers interest rate markets on the Optimism Layer 2 network, has become the latest victim of a security attack. The exploit, which was detected by security firms including BlockSec and Beosin, has resulted in estimated losses of over 4300 ether ($7.3 million)."


https://www.msn.com/en-us/money/markets/magnate-finance-executes-64-million-exit-scam-on-base-network-details/ar-AA1fLTXK
"Magnate Finance executes $6.4 million exit scam on Base Network
Magnate Finance, a lending project operating on the Ethereum Layer 2 network Base, has executed an exit scam, making off with an estimated $6.4 million. The event, described as a rug pull by security firm PeckShield, has sent shockwaves through the cryptocurrency community."
legendary
Activity: 1820
Merit: 1121
August 23, 2023, 02:31:46 PM
Base project RocketSwap Labs has outlined its emergency program to bounce back from a brute force hack that swiped $865,000 or 471 Ether  from the protocol on Aug. 14.
The team explained on Aug. 15 that they plan on redeploying a new farm contract and open-source it on-chain, relinquish minting rights — presumably of RCKT — and will soon call on the hackers to return the assets, among other things

https://cointelegraph.com/news/base-dex-rocketswap-announces-emergency-plan-after-exploit
legendary
Activity: 1932
Merit: 4602
August 16, 2023, 10:41:59 AM
"In August 2023, Steadefi — a leveraged yield aggregation platform — was the victim of an attack. The attacker gained access to the private keys used to manage the project’s deployed contract, resulting in about $1.1 million in losses."

https://www.halborn.com/blog/post/explained-the-steadefi-hack-august-2023

"Blockchain security firm PeckShield revealed fresh vulnerabilities targeting decentralized finance (DeFi) projects on Aug. 9. According to the firm, Aave’s Earning Farm has been compromised by a reentrancy attack, resulting in the theft of at least $287,000 worth of Ether "

https://cointelegraph.com/news/aave-earning-farm-protocol-targeted-by-reentrancy-attack-peckshield

"Uwerx Loses $327,000 To A Flash Loan Attack

A flash loan attack on August 2 cut Uwerx's successful launch celebration short. The attacker flash-loaned 20,000 ETH (approximately $36,726,400) and swapped it for 5,053,637 WERX."
https://www.theportugalnews.com/news/2023-08-12/uwerxs-road-to-redemption-overcoming-hurdles-after-successful-launch-due-to-hack/80409

UZD Stablecoin Plummets As Zunami Protocol Loses Over $2.1 Million To Exploit
https://www.ibtimes.com/uzd-stablecoin-plummets-zunami-protocol-loses-over-21-million-exploit-3708535



Pages:
Jump to: