Category: Security

Friend.tech, a decentralized social network, has updated user login settings following a series of SIM-swap security breaches resulting in a loss of over 100 ETH. Despite enhancements to individual account control, users have voiced concerns about issues like lack of two-factor authentication and persistent sessions on multiple devices.

“Friend.tech, a crypto-oriented platform, has suffered a series of SIM-swapping attacks resulting in stolen digital assets. Industry firm, Manifold Trading, projects around $20 million of friend.tech’s total $50 million could be exposed to similar threats due to existing protocol setup.”

South Australian police have apprehended a man allegedly involved in online drug trafficking and money laundering, confiscating an estimated $1.5 million in cryptocurrency. This incident raises concerns about cryptocurrency’s role in fostering increased illegal online activities, highlighting the need for enhanced security mechanisms within the decentralized financial system.

The recent SIM-swap scams targeting Friend.tech users signify a trade-off between user experience and enhanced security in the crypto-space. Such scams, exploiting cell phone numbers to loot the victim’s accounts, contributed to heightened cybersecurity concerns. Security firms suggest enforcing two-factor authentication and removal of phone numbers from social media accounts as potential solutions.

A cyber crime ring responsible for a $277 million digital heist was apprehended by the Cyber Crime Investigation Bureau, with the instrumental help of crypto exchange Binance. This operation highlights the escalating crisis of crypto scams, commonly known as ‘pig butchering’ scams, fooling investors into fraudulent investment platforms. Despite Binance’s role in crime-fighting, it’s come under scrutiny for reportedly selling unregistered financial products.

“Ardana Labs promised an innovative stablecoin platform for Cardano, however, the project collapsed due to alleged poor financial management. Xerberus’ analysis suggests Ardana’s executives may have misused project funds, leading to a $4 million loss, emphasizing the inherent risks in new-age Web3 startups.”

“The article covers a series of intriguing transactions related to last year’s high-profile FTX hack, with approximately $37 million in stolen cryptocurrency relocated. The timing coincides with the forthcoming trial of FTX’s former CEO, accused of fraud and money laundering.”

Match Systems, a Blockchain security firm, has uncovered an individual allegedly selling tokens linked to recent CoinEx and Stake hacks at discounted rates. The operation exposed significant blockchain vulnerabilities but also spotlighted inherent safeguards, traceability and transparency leading way for advancements in security.

“The growing trend of AI deep fakes, utilizing celebrities’ likeness without consent for scams or promotions, highlights the urgent need for regulations to balance AI evolution and public safety. However, it’s complicated to manage AI’s creative potential while respecting individual rights.”

“Binance, a major player in the crypto world is leading the fight against cybercrime, using blockchain technology to ensure user security. Recently, Binance partnered with CCIB and Thailand’s Royal Police, successfully dismantling significant scams and seizing assets worth millions.”

The alarming increase in cybersecurity breaches in the blockchain resulted in a loss of over $685 million in the third quarter of 2023. This number rose by 59.9% from the previous quarter’s losses. With notable incidents spanning across 49 protocols and projects, these cybercrimes misappropriated almost $662 million. The vulnerability of the DeFi sub-sector has been specifically highlighted, as it lost a massive $2.8 billion in 2022.

“September 2023 heralded a significant blow to the crypto world, with a staggering $332 million lost to various exploits, scams, and hacks. The biggest loss, however, came from exploits, causing about $329.8 million damage. High-profile cyber attacks underscore the need for enhanced security in the crypto-ecosphere and highlight the potential misuse of cryptocurrency.”

“The third quarter of 2023 witnessed a loss of about $700 million in digital assets due to 184 security incidents, according to a report by CertiK. Major causes included private key breaches, exit scams, and oracle manipulation, underscoring blockchain security imperfections. Despite these challenges, the industry continues to evolve with focus on increasing security standards.”

“The recent alleged hacking of a cryptocurrency project highlights both the effectiveness of global blockchain security and the rising threat of internal cyber breaches in the sector. It underscores the need for advanced countermeasures and practices, early detection, and security awareness training.”

“Cybersecurity experts warn of a new malware variant, “LightlessCan”, orchestrated by Lazarus Group. This sophisticated malware is deployed via employment scams, leading to cyber espionage. LightlessCan uses a Remote Access Trojan (RAT), mimicking Windows commands for stealthy execution and employs multiple encryption methods.”

“In a world advancing in blockchain technology, security remains a significant concern, as demonstrated by the FTX exploit which led to a $17.1M loss. This exploit caused swift Ethereum transfers, affecting crypto market sensibility and user confidence significantly.”

“Decentralized exchange Pond0x has surpassed $100 million in trading volume, amidst concerns of scam operations involving its PNDX token. Allegedly directing Ethereum gained through its token launch to a non-refundable contract and displaying a risky transfer function, the platform’s credibility is under intense scrutiny. Pond0x’s future remains uncertain amidst these controversies.”

“In the ongoing JPEX crypto exchange scandal, authorities have apprehended more suspects, taking the total to eighteen. As the investigation unfolds, significant wealth has been seized, and unauthorized Visa cards labeled ‘JPEX’ have been discovered. The scandal underscores the challenges of regulating emerging crypto exchanges and serves as a warning to investors about the need for diligence.”

Investigator @BoringSleuth’s report pointed out inconsistencies in the source of blockchain initiative, Filecoin’s ICO. It suggests a potential scheme intended to deceive investors by mimicking widespread investor interest. The verity of these claims remains unproven but they have raised important questions regarding transparency in the crypto realm.

After losing $200 million in digital assets to a cybercrime exploit, Hong Kong-based Mixin Network is offering a $20 million bug bounty to the perpetrator. The company swiftly disabled user services after the breach, before working on resolving detected vulnerabilities to uphold user security and platform integrity. Mixin Network’s ability to handle this event highlights the significance of firm-level security in the unregulated world of cryptocurrencies.

In an unusual move, the decentralized cross-chain protocol Mixin Network offered a $20M bug bounty to a hacker who recently breached its security, resulting in a $200M loss. While this strategy could reduce damage, it also risks incentivizing harmful activities. It highlights the intense trade-off between security and accessibility within cryptocurrency, and emphasizes the critical need for strong security measures in DeFi.

“The vibrant and rapidly evolving cryptocurrency sector experiences various cybersecurity issues, including phishing attacks, malware, and flaws in smart contracts. Despite blockchain and decentralized technologies bolstering security, these technologies present unique risks. To counter these, security experts advocate for cold storage solutions, strong passwords, two-factor authentication, and caution against phishing attempts.”

The Beosin EagleEye platform reported $890 million in losses due to security breaches, rug pulls, and phishing from July to September 2023. Decentralized Finance (DeFi) bore the brunt of these incidents with Ethereum suffering losses of $227 million, marking a grim quarter for Web3.

“After a security breach resulting in an $8 million loss, cryptocurrency exchange HTX reassured users about their deposits’ safety, marking the continuing debate over crypto market security. Shareholder Justin Sun responded unorthodoxly, offering a bounty to the responsible hacker and hinting at hiring them as a security advisor.”

In response to the $8m theft from the HTX network, the Binance security team are tracking the stolen funds. HTX offered a 5% “white-hat bonus” for recovery of the funds, emphasising the international, multilingual nature of cryptocurrency. The incident underlined the importance of robust security mechanisms in maintaining trust in the crypto world.

Global cryptocurrency exchange Huobi recently experienced a cyberattack, resulting in the theft of approximately $7.9 million worth of ETH. Huobi identified the culprits and offered them a 5% reward on the returned funds, even proposing a role for the hacker as a security consultant. However, failure to comply will lead to legal action.

“On September 25, the decentralized cross-chain transfer protocol Mixin Network had approximately $200 million stolen in a cloud server hack. This incident has incited a broader conversation about security in the blockchain and cryptocurrency world. As blockchain technology advances, it’s crucial to maintain impenetrable security measures to counteract its potential risks.”

“Huobi Global, now HTX, recently suffered a security breach leading to $7.9M in digital assets being stolen. This incident highlights the need for advanced security in crypto and raises questions about the exchange’s safety infrastructure. HTX’s innovative approach of offering a “white-hat bonus” to recover stolen assets without resorting to legal actions could revolutionize how crypto exchanges handle such breaches.”

Reports suggest that the notorious North Korean hacking group Lazarus Group has a cryptocurrency reserve worth over $47 million, mostly in Bitcoin, according to institutional crypto platform provider, 21.co. The hacker group’s stash was tracked to 295 wallets identified by the US Government.

A Melbourne couple face trial after being erroneously credited $6.7 million by Crypto.com and spending most of it. The mishap occurred when an intended $100 refund massively inflated to $10.5 million. This is not Crypto.com’s first sizable transaction error.

Chainlink recently altered its multisig wallet’s signature rule, shifting from a 4-of-9 to a 4-of-8 requirement. Critics suggest this change and removal of a wallet address may indicate potential centralized control risking the DeFi ecosystem’s integrity. Regardless, Chainlink maintains its utility in DeFi projects and its token value keeps growing.

Mixin Network’s founder, Feng Xiaodong recently disclosed a substantial $200 million hack on the network’s cloud service provider database. This breach resulted in the compromise of users’ digital assets such as Bitcoin and Ethereum. The company is introducing remedial measures including the issuance of “bond tokens” to offset the loss and boosting their security system. This incident resulted in a 9% dip in token value.