Cointime

Download App
iOS & Android

Horizen: SpookySwap has a front-end vulnerability and users are advised to revoke all wallet access to it

According to a report from the SpookySwap community, there may be vulnerabilities in the front-end interface. As a security measure, Horizen EON users are advised to revoke all wallet access permissions to SpookySwap until further notice from the Spooky team. The quickest and easiest way to revoke wallet access is through Revoke.Cash. Earlier today, DEX Trader Joe also reported possible vulnerabilities in their front-end interface and their team is currently investigating.

Comments

All Comments

Recommended for you

  • SlowMist publishes over 4,000 DEXX victim addresses and corresponding attacker addresses on the EVM chain

    Yu Xian disclosed that SlowMist has published the addresses of more than 4000 victims and corresponding attacker addresses on the EVM (ETH/BSC/BASE) chain's DEXX. Last week, more than 8600 Solana addresses related to attackers were announced. The data comes from the official DEXX and submissions from thousands of victims.
  • Community feedback: On-chain AI agent Spectral interaction contract was hacked

    On December 1st, X user @RuslanMoody warned: "Do not interact with the on-chain AI agent Spectral website, as its interaction contract has been hacked. Note: this does not apply to tokens whose liquidity is locked on Uniswap." Additionally, X user @0xYong_W stated that the Spectral exchange has been "emptied" by someone else.
  • Security agency: Clipper lost more than $500,000 in attack, $6.5 million in funds at risk

    security organization fuzzland's co-founder shoucccc stated in a post on X that "DEX Clipper was attacked by hackers due to API vulnerabilities (such as private key leaks). Currently, the losses exceed 500,000 US dollars, and 6.5 million US dollars of funds are at risk. Users are advised to withdraw immediately."
  • Runestone founder warns community about scam Inscription airdrops

    Runestone founder Leonidas has issued a warning to the Runes community regarding a scam inscription that has just been airdropped to $DOG holders. The inscription links to a scam website that steals user wallet assets. Runes has now attracted the attention of scammers, so be very careful when connecting your wallet to any websites.
  • There were more than 30 attacks in the crypto space in November: losses of approximately $85.53 million

    According to Pai Shield statistics, in November 2024, there were more than 30 hacker attacks in the cryptocurrency field, causing about $85.53 million in losses, of which about $25.20 million was recovered. Top 5 hacker attacks are as follows:
  • Binance will delist Gifto (GFT) spot trading pairs

     Binance has announced that deposits for Gifto (GFT) have been suspended as of November 29, 2024 due to potential security issues with the GFT smart contract. Binance may reopen GFT deposits if they deem it safe to do so, but will not issue any further announcements. Binance has decided to delist and cease trading for all Gifto (GFT) spot trading pairs on December 3, 2024 at 08:00 (UTC).
  • Gitfo: GFT token contract has been leaked and investigation is ongoing

    Gitfo posted on X platform stating that the GFT token contract has been leaked and more GFT tokens have been issued, reminding the community to be aware of the serious security incident involving the GFT contract. Currently, investigations are ongoing and the severity of the situation is being understood, with necessary measures being taken. It is reported that Gitfo has requested all exchanges listing GFT to stop trading the token and is working to resolve the issue.
  • Cosine: After a user used GPT to write a bot with a backdoor code, the private key was sent to a phishing website

    SlowMist Yu Xian stated in a post on the X platform that a user used GPT to write a bot with code and sent the private key to a phishing website. The reason why the private key was stolen was because it was directly sent to the phishing website in the HTTP request body. Yu Xian reminded that when using LLM such as GPT/Claude, one must pay attention to the common fraudulent behavior of these LLM. It was previously mentioned that AI poisoning attacks were carried out, and now this is a real attack case targeting the crypto industry.
  • Polymarket Blocks French Users Amid Government Investigation into Gambling Law Compliance

    Polymarket has blocked users from France following reports of an investigation by the country's gaming authority for compliance with gambling laws. The ban was not stated in Polymarket's terms of service, but French users attempting to access the website using a VPN from a French server were met with a digital blockade. The ANJ, France's national gaming authority, began investigating Polymarket after a French trader placed large bets on Donald Trump winning the 2024 US Presidential election.
  • Yao Qian, former director of the Science and Technology Supervision Department of the China Securities Regulatory Commission, was expelled from the party and removed from public office for allegedly u

    the Discipline Inspection and Supervision Team of the Central Commission for Discipline Inspection and the National Supervision Commission stationed in the China Securities Regulatory Commission and the Supervision Commission of Shantou City, Guangdong Province, recently conducted disciplinary review and supervision investigations into Yao Qian, former director of the Science and Technology Supervision Department of the China Securities Regulatory Commission and former director of the Information Center, for serious violations of discipline and law.