Fairyproof Official Newsletter: Blockchain Security Watch

Weekly Blockchain Security Watch

Mon, 06 Jan 2025 00:50:27 GMT

From December 30, 2024 to January 5, 2025, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Wallet Address Suffers Exploit

On January 1, a BNB Chain wallet address (0x9CCDb875B9Bb5275bd91e6865a179c75f7fF5054) was exploited.

The attackers are :

0x3839a41FF06566ff0aFEA47567e8782d1354548B and

0x4Df845DFeBBB2815Cd026586E883147152025A99

Crypto assets worth around US $316,000 were exploited in this incident.

2. Wallet Address Suffers Exploit

On January 2, a BASE wallet address (0x7c73158ba38d1b151cadf95bee7e078e1d134d2e) was exploited.

The attackers are :

0x1a5c24e4ae2d9ebb75c54760e5b60d1454c1bfd1, 0xa18355ab77725ecf284993c9f0f4295de28cb5d0 and

0x4df845dfebbb2815cd026586e883147152025a99

Crypto assets worth around US $188,000 were exploited in this incident.

3. Wallet Address Suffers Exploit

On January 3, an Ethereum wallet address (0xf47841F562689AD85363B41C235D61136C0Ccf26) was exploited.

The attackers are :

0x3839a41FF06566ff0aFEA47567e8782d1354548B and

0x4Df845DFeBBB2815Cd026586E883147152025A99

Crypto assets worth around US $965,000 were exploited in this incident.

CONCLUSION-

3 notable security incidents occurred in the past week. They all were attacks on wallets.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 30 Dec 2024 01:10:27 GMT

From December 23, 2024 to December 29, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Moonwell Suffers Exploit

On December 24, an Optimism deployed dApp Moonwell@MoonwellDeFi was exploited.

The root cause is that it suffered from a flash-loan attack.

Crypto assets worth around US $320,000 were exploited in this incident.

CONCLUSION-

1 notable security incident occurred in the past week. It was an attack on smart contracts.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 23 Dec 2024 00:52:47 GMT

From December 16, 2024 to December 22, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Wallet Address Suffers Exploit

On December 17, an Ethereum wallet address (0xabffF784e51016F48FD5119fD6aE522218C22885) was exploited.

The attackers are:

0x5400F716F97a294B75c5Db0C37D432231485e426 and

0x79238feadd08f383592aBDD02cd69131D1872795 on ETH.

Crypto assets worth around US $178,000 were exploited in this incident.

2. HarryPotterObamaSonic10Inu 2.0 Token Suffers Exploited

On December 18, an Ethereum deployed token HarryPotterObamaSonic10Inu 2.0 was exploited.

The attackers is 0x8Ca0392D4997C35FA6dDA2c0b6b8314987FAB554 on ETH.

Crypto assets worth around US $243,000 were exploited in this incident.

3. Wallet Address Suffers Exploit

On December 18, an Ethereum wallet address (0xaE4fBEe0E16f185F6Bbfa7Da9790AC45Be7ecE34) was exploited.

The attackers are:

0x5400F716F97a294B75c5Db0C37D432231485e426 and

0xCAA5ede382bA476e87383DB5a05f524e5Cc62193 on ETH.

Crypto assets worth around US $468,000 were exploited in this incident.

CONCLUSION-

3 notable security incidents occurred in the past week. All of them were attacks on smart contracts or wallets.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 16 Dec 2024 02:29:42 GMT

From December 9, 2024 to December 15, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Cardano Foundation’s X Account Compromised

On December 9, Cardano Foundation’s X Account (@Cardano_CF) was compromised.

Cardano is a permissionless blockchain.

No crypto assets were exploited at the time of writing.

2. Wallet Address Suffers Exploit

On December 9, an Ethereum wallet address (0x4711B67b499DA8BaA13c004c72F60eb3b7C8e792) was exploited.

The attackers are:

0x077Db731AdAFa3200F18543d5Ed62768Ad66846A

and 0xA43eC6E7a1691c43bBE80161463770b1CFc7203B on ETH.

Crypto assets worth around US $2.4 million were exploited in this incident.

3. Clober Suffers Exploit

On December 10, a multi-chain deployed dApp Clober@CloberDEX was exploited.

The attacker is 0x012Fc6377F1c5CCF6e29967Bce52e3629AaA6025 on BASE.

Crypto assets worth around US $501,000 were exploited in this incident.

CONCLUSION-

3 notable security incidents occurred in the past week. Two were attacks on smart contracts or wallets and one was an attack on a social media account.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 09 Dec 2024 01:07:37 GMT

From December 2, 2024 to December 8, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Brett’s X Account Compromised

On December 2, a dApp Brett’s X Account (Brett@BasedBrett X Account) was compromised.

Brett is deployed on Base.

No crypto assets were exploited at the time of writing.

CONCLUSION-

1 notable security incident has occurred in the past week. It was an attack on a social media account.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 02 Dec 2024 01:51:04 GMT

From November 25, 2024 to December 1, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. XT Exchange Suffers Exploit

On November 28, a centralized exchange XT Exchange@XTexchange suffered an exploit.

The hacker is 0xb43ffc4ea7c66c469c12d1ba3aaeb58420208f83 on Ethereum.

Crypto assets worth around US $1.6 million were exploited in this incident.

CONCLUSION-

1 notable security incident has occurred in the past week. It was an attack on a CEX.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 25 Nov 2024 00:29:50 GMT

From November 18, 2024 to November 24, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Polter Finance Suffers Exploit

On November 18, a Fantom deployed dApp polterfinance@polterfinance suffered an exploit.

The dApp was under an attack of price manipulation.

The hacker is 0x511f427cdf0c4e463655856db382e05d79ac44a6 on Fantom.

Crypto assets worth around US $8.7 million were exploited in this incident.

CONCLUSION-

1 notable security incident has occurred in the past week. It was an attack on smart contracts.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 18 Nov 2024 00:58:57 GMT

From November 11, 2024 to November 17, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Delta Prime Suffers Exploit

On November 11, a multiple chain deployed dApp DeltaPrime@DeltaPrimeDefi suffered an exploit.

The hacker addresses are

0x56e7f67211683857EE31a1220827cac5cdaa634C and

0xb87881637b5c8e6885C51aB7D895e53FA7d7c567 on Arbitrum

Crypto assets worth around US $4.75 million were exploited in this incident.

2. Smart Contract Suffers Exploit

On November 15, an Ethereum deployed contract at 0x280A8955A11FcD81D72bA1F99d265A48ce39aC2E suffered an exploit.

The attacker is 0x713d2b652e5f2a86233C57Af5341Db42a5559Dd1 on Ethereum.

Crypto assets worth around US $450,000 were exploited in this incident.

CONCLUSION-

2 notable security incidents have occurred in the past week. Both were attacks on smart contracts.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 11 Nov 2024 01:53:07 GMT

From November 4, 2024 to November 10, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. METAWIN Suffers Exploit

On November 4, a multiple chain deployed dApp METAWIN@Meta_Winners suffered an exploit.

Its hot wallets from Ethereum, Base and Solana were hacked.

Crypto assets worth around US $4 million were exploited in this incident.

CONCLUSION-

1 notable security incident has occurred in the past week. It was an attack on hot wallets.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 04 Nov 2024 01:09:10 GMT

From October 28, 2024 to November 3, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Keystone Hardware Wallet’s X Account Compromised

On October 30, Keystone hardware wallet’s X account @KeystoneWallet was compromised.

A phishing link was posted on its X account.

2. Sunray Finance Suffers Exploit

On October 31, an Arbitrum dApp SUNRAY·FINANCE@SUNRAY_DEX suffered an exploit.

The root cause is that its private key was compromised.

The attacker is 0xb1BBe57f5c474996a84274f0078A2411e1a65B8A on Arbitrum.

Crypto assets worth around US $2.855 million were exploited in this incident.

CONCLUSION-

2 notable security incidents have occurred in the past week. One was an attack on social media and the other was an attack on smart contracts.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 28 Oct 2024 02:15:02 GMT

From October 21, 2024 to October 27, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. EOA Address Suffers Exploit

On October 25, an Ethereum EOA address 0x05f575cb2d49D90044a0ecA8576dcd4D17D5782A suffered an exploit.

The address suffered a phishing attack.

The attacker is 0x0000db5c8B030ae20308ac975898E09741e70000 on Ethereum.

Crypto assets worth around US $125,000 were exploited in this incident.

CONCLUSION-

1 notable security incident has occurred in the past week. It was an attack on an EOA address.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 21 Oct 2024 02:43:38 GMT

From October 14, 2024 to October 20, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Radiant Capital Suffers Exploit

On October 17, Radiant Capital@RDNTCapital suffered an exploit.

The root cause is that its private key was compromised.

The attacker is 0x579145D6d1F26a460d9BDD3040C37517dac379ac on the BNB chain.

Crypto assets worth around US $18 million were exploited in this incident.

2. Tapioca Foundation Suffers Exploit

On October 18, Tapioca Foundation@tapioca_dao suffered an exploit.

The root cause is that its private keys were compromised.

The attackers are 0x69D91e56Ca80F2a4D7b808b59053ea5c5505FFe2 on the BNB chain and 0x70285a11489bed93686410ebc727057cafb8129d on Arbitrum.

Crypto assets worth around US $4.7 million were exploited in this incident.

CONCLUSION-

2 notable security incidents have occurred in the past week. One was an attack on a front-end and the other was an attack on smart contracts.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 14 Oct 2024 00:58:00 GMT

From October 7, 2024 to October 13, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. EOA Address Suffers Exploit

On October 11, EOA address 0xEab23c1E3776fAd145e2E3dc56bcf739f6e0a393 on Ethereum suffered an exploit. Its crypto assets were drained.

The attackers are:

0x000099B4a4D3cEb370d3A8A6235d24e07A8c0000

0x0605edee6a8b8b553cae09abe83b2ebeb75516ec

0xb0de93a54da8a2cfcde44a06f797ab2fb9d39fb8

on Ethereum.

Crypto assets worth around US $35 million were exploited in this incident.

CONCLUSION-

1 notable security incident has occurred in the past week. It was an attack on a wallet.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 07 Oct 2024 00:57:11 GMT

From September 30, 2024 to October 6, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. FIRE Token Suffers Exploit

On October 1, the FIRE token deployed on Ethereum suffered an exploit.

The token is deployed at 0x18775475f50557b96C63E8bbf7D75bFeB412082D on Ethereum.

The root cause is due to an issue in the token’s burning mechanic within the transfer() function.

Crypto assets worth around US $24,000 were exploited in this incident.

2. Symbioticfi's X Account Compromised

On October 5, Symbioticfi's X account (@symbioticfi) was compromised.

At the time of writing, no loss of crypto assets was reported.

CONCLUSION-

2 notable security incidents have occurred in the past week. One was an attack on smart contracts and the other was an attack on a social media account.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 30 Sep 2024 00:48:27 GMT

From September 23, 2024 to September 29, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Onyx Suffers Exploit

On September 26, Onyx@OnyxDAO, a dApp deployed on Ethereum suffered an exploit.

The root cause is that its exchange rate was manipulated.

Crypto assets worth around US $3.8 million were exploited in this incident.

CONCLUSION-

1 notable security incident has occurred in the past week. It was an attack on smart contracts.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 23 Sep 2024 00:53:00 GMT

From September 16, 2024 to September 22, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. DeltaPrime Suffers Exploit

On September 16, DeltaPrime@DeltaPrimeDefi, a dApp deployed on Arbitrum suffered an exploit.

The root cause is that its private key was compromised.

The compromised wallet is 0x40e4ff9e018462ce71fa34abdfa27b8c5e2b1afb.

Crypto assets worth around US $5.9 million were exploited in this incident.

2. BingX Suffers Exploit

On September 20, BingX(https://bingx.com/), a CEX suffered an exploit.

Crypto assets worth more than US $43 million were exploited in this incident.

CONCLUSION-

2 notable security incidents have occurred in the past week. One was an attack on smart contracts and the other was an attack on a CEX.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 16 Sep 2024 01:28:39 GMT

From September 9, 2024 to September 15, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. CUT Suffers Exploit

On September 10, CUT@cut2024cut, a dApp deployed on BNB suffered an exploit.

The attacker is 0x560a77bc06dcc77EEe687acB65D46B580a63eB45 on BNB.

Crypto assets worth around US $1.4 million were exploited in this incident.

2. indodax@indodax Suffers Exploit

On September 11, indodax@indodax, a CEX suffered an exploit.

The attacker is 0xB0A2e43D3E0dc4C71346A71484aC6a2627bbCbeD on Ethereum.

The root cause is that its private key was compromised.

Crypto assets worth around US $20 million were exploited in this incident.

CONCLUSION-

2 notable security incidents have occurred in the past week. One was an attack on smart contracts and the other was an attack on a CEX.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 09 Sep 2024 02:01:03 GMT

From September 1, 2024 to September 8, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Penpie Suffers Exploit

On September 4, Penpie@Penpiexyz_io suffered an exploit.

The attacker is 0x7A2f4D625Fb21F5e51562cE8Dc2E722e12A61d1B on Ethereum.

The root cause was its contracts had a re-entrancy issue.

Crypto assets worth around US $27 million were exploited in this incident.

CONCLUSION-

1 notable security incident has occurred in the past week. It was an attack on smart contracts.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 02 Sep 2024 00:56:34 GMT

From August 26, 2024 to September 1, 2024, all security incidents that had occurred can be catrgorized into Security Hacks and Rug-pulls.

SECURITY HACKS:

1. AVAX Discord Server Compromised

On August 26, AVAX@avax announced that its Discord server was compromised.

AVAX is a permissionless blockchain.

RUG-PULLS:

1. FreePavel Token Rugpull

On August 27, an Ethereum deployed token Free Pavel was confirmed to be a rug-pull.

The token is deployed at 0x8D3ef094A8c5980DbddBA23b6Dff61AA5DaD6a43 on Ethereum

After the rugpull, the price of the token dropped by 100%.

35 $ETH worth around US $94,000 were exploited in this incident.

CONCLUSION-

2 notable security incidents have occurred in the past week. One was an attack on social media, and the other was a rug-pull.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/

Weekly Blockchain Security Watch

Mon, 26 Aug 2024 00:53:04 GMT

From August 19, 2024 to August 25, 2024, all security incidents that had occurred are all Security Hacks.

SECURITY HACKS:

1. Malicious Chrome Extension

On August 20, a chrome extension called “Bull Checker” was reported to be malicious by Jupiter. It was reported that some users got drained in DeFi applications on Solana due to it.

Users who interacted with this extension would be tricked to allow tokens to be transferred to another wallet.

CONCLUSION-

1 malicious chrome extention was found in the past week. It was found and reported by Jupiter.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/