Weekly Blockchain Security Watch

July 22 to July 28

From July 22, 2024 to July 28, 2024, all security incidents that had occurred can be categorized into Security Hacks and Rug-pulls.

SECURITY HACKS:

1. Renzo Discord Compromised

On July 22, Renzo@RenzoProtocol’s Discord server was compromised. Renzo@RenzoProtocol is a staking dApp on Ethereum.

2. dYdX’s Website Compromised

On July 24, dYdX@dYdX’s website was compromised. dYdX@dYdX is a DeFi application deployed on multiple chains.

RUG-PULLS:

1. ETH Trust Fund Rug-pull

On July 22, an Based deployed dApp ETHTrustFund@ethtrustfund_ was confirmed to be a rug-pull.

A scammer (0xF259F01C40C211D63Ab75A6d2B108B364EFaB780 on Base) rugged US $2 million crypto assets in this incident and laundered them with Tornado Cash and Railgun.

CONCLUSION-

3 notable security incidents have occurred in the past week. One was an attack on social media, one was an attack on a website and one was a rug-pull.

A Reminder for Project Teams: Always test thoroughly. Do smart contract audits before deploying smart contracts on-chain. Be alert to any anomalies happening in the various social media accounts you manage.

A Reminder for Crypto Users: Be cautious about suspicious links, emails, websites, and projects launched by teams without established reputations.

It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.

To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:

For a better understanding of all things Web3.0: https://medium.com/@FairyproofT

Looking to strengthen the security of your project or looking for an audit? Contact us at

https://www.fairyproof.com/