Scammers are targeting popular cryptocurrency projects like Dymension (DYM) and OpenSea, resulting in a surge of phishing attacks and a loss of over $55 million in January alone, according to a report by Web3 security firm Scam Sniffer. The scams often coincide with airdrops and project events, and scammers have created over 11,000 phishing sites to impersonate well-known projects. The majority of thefts occurred on the Ethereum mainnet, but other chains like Arbitrum, BNB, Optimism, and Polygon also experienced significant losses. The report highlights the importance of exercising caution and staying informed in the evolving crypto landscape.

Blockchain security company Hacken recently revealed the connection between a hack against Ripple co-founder and chairman Chris Larsen's personal wallet and XRP authorized wallets. The hack occurred on January 31st and caused Larsen to lose 213 million XRP, worth $112.5 million. Hacken revealed that the hack involved two core wallets related to XRP authorized wallets. Due to the complexity of the incident, the investigation initially focused on a wallet with the address starting with "rJNLz3A1", which was identified as the compromised XRP wallet. Through analysis of incoming and outgoing transactions, Hacken's research indicates that most of the stolen funds were transferred to different exchange addresses, including one from Kraken, which was reportedly used to transfer funds. Specifically, a wallet address starting with "rU1bPM4" had a significant amount of transactions with Larsen and was associated with the wallet used by the hacker. This account has a long-standing relationship with XRP and, prior to the incident, sent 64.6 million XRP to Larsen and participated in a transaction with Kraken's deposit address, reportedly used to transfer funds from the attack. Although Hacken did not reach the conclusion that the attack was carried out by insiders, the connection between the wallets involved and XRP authorized wallets is unusual. <br>

According to CertiK's monitoring, ZBexchange hackers have deposited 1313 ETH into Tornado Cash in the past few hours. In the past 3 days, a total of 2023.1 ETH (about $4.9 million) has been deposited into Tornado Cash.

According to Cyvers Alerts monitoring, in August 2022, the exchange ZBexchange was attacked by hackers due to suspected private key leakage. Today, the hacker deposited $250,000 into Tornado Cash through address 0x26446. The hacker still holds 2,114 ETH (worth $4.8 million) at the same address mentioned above.

On February 5th, cybersecurity solution provider Hudson Rock disclosed that a hacker going by the name "Tamagami" claimed to have breached KodexGlobal, a secure network for communication between regulatory and law enforcement agencies, as well as a law enforcement request system for well-known tech companies such as Google, Meta, TikTok, and cryptocurrency projects such as Binance, Coinbase, Chainlink, Discord, and Fintech. The hacker is selling access to KodexGlobal accounts on breakachforums, allowing buyers to access user information from these companies. The hacker charges between 300 and 500 dollars per request for emergency data requests (EDR) on KodexGlobal when commissioned by a buyer, and promises that interested buyers can "access any TikTok account and obtain the desired data within 8 hours" for a payment of 500 dollars. Tamagami accepts any type of encrypted payment. The spokesperson for Binance stated that the investigation results from Hudson Rock do not necessarily represent damage to popular cryptocurrency exchange systems. The spokesperson stated: "Through a complete document process and continuous monitoring of any compromised accounts, we are still committed to protecting our user data from any form of unauthorized access."

Blockworks personnel @MikeIppolito_ posted on social media that the Twitter account of its founder Yano has been compromised by hackers. Users are advised to disregard all tweets and direct messages from the account and to be aware of the risks.

According to PeckShield monitoring, DeFi protocol MIM_Spell was attacked by hackers, resulting in a loss of $6.49 million.

GoPlus issued a security warning on social media stating that the GMEE TOKEN token contract on the chain game platform had been accessed without authorization, resulting in the theft of 600 million GMEE tokens, worth $7 million. The hacker has converted the tokens into ETH and MATIC.

According to PeckShield monitoring, cross-chain protocol Socket was attacked and at least $3.3 million worth of funds were stolen. Hackers used malicious routing to steal user funds from the SocketGateway contract.

The recent hack of the U.S. Securities and Exchange Commission's official account on X has raised concerns about the security of Elon Musk's social media platform. However, X's safety team has confirmed that the account was compromised due to the SEC's failure to enable two-factor authentication, rather than any breach of X's systems. The hackers posted false news about the SEC's approval of all spot Bitcoin ETFs, causing massive volatility in the Bitcoin price and over $140 million in total liquidation in hours. The SEC is now working with law enforcement to investigate the matter, while some are blaming Elon Musk for the incident and the lack of security measures on the platform.