Weekly Blockchain Security Watch
April 15 to April 21
From April 15, 2024 to April 21, 2024, all security incidents that had occurred can be categorized into Security Hacks and Rug-pulls.
SECURITY HACKS:
1. Grand Base Suffers Exploit
On April 15, a Base deployed dApp Grand Base@grandbase_fi suffered an exploit.
The root cause of this incident is that its private key was compromised.
Crypto assets worth US $1.7 million were exploited in this incident.
2. MARS Suffers Exploit
On April 16, a BNB Chain deployed dApp MARS@Mars_DeFi412 suffered an exploit.
The attacker is 0x306174B707EbF6d7301a0BCd898ae1666Ec176ae on Ethereum
The root cause is its token’s price was manipulated.
Crypto assets worth around US $100,000 were exploited in this incident.
3. SATX Suffers Exploit
On April 17, a BNB Chain deployed token SATX suffered an exploit.
The attacker is 0xBEF24B94C205999ea17d2ae4941cE849C9114bfd on the BNB Chain.
The root cause is it had a logic vulnerability.
Crypto assets worth around US $26,400 were exploited in this incident.
4. Star Wallets Suffers Exploit
On April 19, a BNB Chain deployed dApp StarWallets@StarWallets suffered an exploit.
The attacker is 0x19E3188F7637404FC627503B583377d9348EE3AD on the BNB Chain.
The root cause is that its price was manipulated.
Crypto assets worth around US $33,000 were exploited in this incident.
5. Hedgey Suffers Exploit
On April 19, an Ethereum deployed dApp Hedgey@hedgeyfinance suffered an exploit.
The attacker is 0xDed2b1a426E1b7d415A40Bcad44e98F47181dda2 on Ethereum.
The root cause is that it had a logic vulnerability.
Crypto assets worth around US $1.3 million were exploited in this incident.
RUG-PULLS:
1. OMNIÂ Token Rug-pull
On April 15, a BNB Chain deployed token OMNI was confirmed to be a rug-pull.
After the rugpull, the price of the token dropped by 100%.
Crypto assets worth around US $270,000 were exploited in this incident.
CONCLUSION-
6 notable security incidents have occurred in the past week. five were attacks on smart contracts, and one was a rug-pull.
A Reminder for Project Teams: Always test thoroughly. Do smart contract audits before deploying smart contracts on-chain. Be alert to any anomalies happening in the various social media accounts you manage.
A Reminder for Crypto Users: Be cautious about suspicious links, emails, websites, and projects launched by teams without established reputations.
It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.
To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:
For a better understanding of all things Web3.0: https://medium.com/@FairyproofT
Looking to strengthen the security of your project or looking for an audit? Contact us at
https://www.fairyproof.com/