Weekly Blockchain Security Watch
October 23 to October 29
From October 23, 2023 to October 29, 2023, all security incidents that had occurred can be categorized into Security Hacks and Rug-pulls.
SECURITY HACKS:
1. MaestroBots Suffers Exploit
On October 25, a multi-chain deployed dApp MaestroBots suffered an exploit.
The root cause of this exploit was that its contracts lacked a check on calldata.
The attacker’s address is 0xCE6397e53c13ff2903FfE8735e478d31E648a2c6 on Ethereum
Crypto assets worth around US $500,000 were exploited in this incident.
2. Astrid Finance Suffers Exploit
On October 29, an Ethereum deployed dApp Astrid Finance suffered an exploit.
The root cause of this incident was that its contracts lacked validation on tokens.
The attacker’s address is 0x792eC27874E1F614e757A1ae49d00ef5B2C73959 on Ethereum
Crypto assets worth around US $228,000 million were exploited in this incident.
RUG-PULLS:
1. Safereum Rug-pull
On October 24, an Ethereum deployed token Safereum was confirmed to be a rug-pull.
The token is deployed at 0xb504035a11E672e12a099F32B1672b9C4a78b22f on Ethereum
At the time of writing, the team behind the project had deleted their social media accounts on X.
Crypto assets worth around US $1.3 million were rug-pulled in this incident.
2. LINEA Rug-pull
On October 26, an Ethereum deployed token LINEA was confirmed to be a rug-pull.
The token is deployed at 0x00000000fEB6A772307C6aA88AB9D57b209aCb18Â on Ethereum.
Crypto assets worth around US $743,000 were cashed out via Tornado Cash.
3. IBTC Rug-pull
On October 26, a BNB chain deployed token IBTC was confirmed to be a rug-pull.
The token is deployed at 0xdc68eed00bce879fb920076eaf227a99d7927929Â on BNB chain.
Crypto assets worth around US $89,800 were exploited in this incident.
CONCLUSION-
5 notable security incidents have occurred in the past week. 2 were attacks on smart contracts or wallets and 3 were rug-pulls.
It is worth noting that the loss in the Safereum rug-pull was $1.3 million.
A Reminder for Project Teams: Always test thoroughly. Do smart contract audits before deploying smart contracts on-chain. Be alert to any anomalies happening in the various social media accounts you manage.
A Reminder for Crypto Users: Be cautious about suspicious links, emails, websites, and projects launched by teams without established reputations.
It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.
To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:
For a better understanding of all things Web3.0: https://medium.com/@FairyproofT
Looking to strengthen the security of your project or looking for an audit? Contact us at
https://www.fairyproof.com/