Click “page.Sign up” to agree to Cointime’s <a class="underline" href="#term-of-service">Terms of Service</a> and acknowledge that Cointime’s a class="underline" href="#privacy-policy">Privacy Policy</a> applies to you.
blockchain security company SlowMist announced that as of November 18th, the DEXX incident report has been updated: more than 1,100 reports of funds being stolen have been received from the community. After removing duplicate reports, it has been confirmed that there are more than 900 victims, with a total estimated loss of $21 million (affected by price fluctuations). Loss details (so far):
On November 18th, OneKey Security Lab issued a security warning. Multiple users of the Dexx trading platform reported abnormal login attempts on their associated email accounts. OneKey recommends that users take immediate security measures, especially for those who use the same password for logging in to Dexx and their email: 1) immediately change the password for all Web2 accounts that use the same password; 2) completely abandon any leaked password combinations; 3) pay special attention to the security of email accounts that contain sensitive information and are associated with multiple authentications.
On November 18th, Polterfinance, a lending project on the Fantom chain, left a message to the hacker on the chain, stating: "If the funds can be returned in a timely manner, we are willing to negotiate and will not take legal action. Please send the funds to the corresponding address on the Fantom chain (starting with 0x6cA0). If further communication is needed, please reply to this message." Earlier today, Polterfinance reported that it was attacked on the Fantom chain, with over $7 million in encrypted assets stolen. The attacker initially obtained the funds through Tornado Cash on Ethereum, which were later bridged to Fantom.
Binance co-founder He Yi posted on social media that "my Telegram account has been maliciously reported and banned. If someone claims to be Yi on Telegram, it is a scam."
Hong Kong Monetary Authority has called on citizens to be vigilant and careful of certain offshore encrypted asset institutions that are not licensed banks in Hong Kong. They claim to be "banks" in Hong Kong or use the word "bank" when describing their products or services. These actions may have violated the "Banking Ordinance".
blockchain security company SlowMist has issued a security alert, stating that suspicious activity related to vETH tokens has been detected. SlowMist reminds users to remain vigilant and pay attention to asset security. According to Cyvers Alerts analysis, hackers caused approximately $440,000 in losses through price manipulation. The attacker first obtained funds through Tornado Cash on the BNB Chain and then crossed the chain to Ethereum through Bridgers.
On November 1st, according to online detective ZachXBT on his personal channel, the cryptocurrency trading platform M2 was hacked yesterday, and approximately $13 million was stolen from multiple hot wallets.
SlowMist announced in a post that it was commissioned to investigate independently the recent theft of 1.67 million EIGEN tokens. After a thorough investigation, SlowMist concluded that the incident was caused by an external malicious attack: an investor of Eigen Labs became a victim of a phishing attack, which led to the intrusion of an employee's email account. This allowed the attacker to access the email thread between the investor, Eigen Labs, and the custodian, where they discussed transferring EIGEN tokens to the custodian, who would hold the tokens on behalf of the investor.
According to Aggr News, Tapioca DAO, a full-chain currency market based on LayerZero, may have been subject to a security breach. The specific details are currently unclear, and users should remain vigilant and avoid interacting with unknown links or suspicious activities.
Blockaid monitoring shows that about 14 minutes ago, a user lost 356,501 US dollars worth of ARB due to network phishing fraud. It is reported that the victim signed an off-chain license by accessing the malicious dApp deployed by Pink Drainer.
All Comments