SlowMist CISO: The Fantom Foundation Was Stolen Because the Foundation or Employees Were Attacked by Phishing Attacks

23pds, the Chief Information Security Officer of SlowMist, stated in a post that yesterday the Fantom Foundation reported being hacked. Based on our analysis of the on-chain transfer method and our past emergency experience, it is likely that the private key was stolen.

It may have been due to phishing or social engineering attacks on their foundation or employees, running malicious Trojan files, resulting in the theft of some wallet private keys. Previously, some wallets of the Fantom Foundation were attacked and hackers profited by exploiting a Chrome zero-day vulnerability.

Fantom $1.03

+3.92%

Fantom

Comments

All Comments

Recommended for you

CointimeSG ·

Hong Kong’s ZA Bank is first bank in Asia to launch retail crypto services

Hong Kong digital bank Zhong An Bank (ZA Bank) unveiled a retail cryptocurrency trading service.
CointimeSG ·

NFTs record $158M weekly sales volume, led by Ethereum, Bitcoin

November has already surpassed October’s total volume, continuing strong market momentum for NFTs.
CointimeSG ·

Ex-partner tosses $716M Bitcoin wallet, says ‘tired of hearing about it’

James Howells’ $716 million Bitcoin fortune in a landfill has sparked legal battles, and his ex-partner now claims she followed his instructions to discard the hard drive.
CointimeSG ·

Singapore Gulf Bank seeks $50M to fund stablecoin firm acquisition

Singapore Gulf Bank looks to sell equity stake to fund product expansion and a 2025 stablecoin payments acquisition.
CointimeSG ·

SEC Collected Record $8.2B in Remedies in FY24, 56% Came from Terraform Labs

The agency recovered $6.1 billion while imposing penalties of $2.1 billion. It filed 583 enforcement actions, a 26 per cent decline year-over-year.
CointimeSG ·

Hash-based zero-knowledge tech can quantum-proof Ethereum — XinXin Fan

Google, Microsoft, Amazon, and IBM are some of the biggest companies currently researching and developing quantum computer technology.
CointimeSG ·

AI Crypto Startup O.XYZ Faces Allegations of Misrepresentation and Internal Turmoil: Sources

Founder Ahmad Shadid has defended his and the company’s actions, but sources say O.XYZ's capabilities have been widely misrepresented.
Cosine: After a user used GPT to write a bot with a backdoor code, the private key was sent to a phishing website

SlowMist Yu Xian stated in a post on the X platform that a user used GPT to write a bot with code and sent the private key to a phishing website. The reason why the private key was stolen was because it was directly sent to the phishing website in the HTTP request body. Yu Xian reminded that when using LLM such as GPT/Claude, one must pay attention to the common fraudulent behavior of these LLM. It was previously mentioned that AI poisoning attacks were carried out, and now this is a real attack case targeting the crypto industry.
Polymarket Blocks French Users Amid Government Investigation into Gambling Law Compliance

Polymarket has blocked users from France following reports of an investigation by the country's gaming authority for compliance with gambling laws. The ban was not stated in Polymarket's terms of service, but French users attempting to access the website using a VPN from a French server were met with a digital blockade. The ANJ, France's national gaming authority, began investigating Polymarket after a French trader placed large bets on Donald Trump winning the 2024 US Presidential election.
Yao Qian, former director of the Science and Technology Supervision Department of the China Securities Regulatory Commission, was expelled from the party and removed from public office for allegedly u

the Discipline Inspection and Supervision Team of the Central Commission for Discipline Inspection and the National Supervision Commission stationed in the China Securities Regulatory Commission and the Supervision Commission of Shantou City, Guangdong Province, recently conducted disciplinary review and supervision investigations into Yao Qian, former director of the Science and Technology Supervision Department of the China Securities Regulatory Commission and former director of the Information Center, for serious violations of discipline and law.