Weekly Blockchain Security Watch
July 31 to August 6
From July 31, 2023 to August 6, 2023, all security incidents that had occurred can be categorized into Security Hacks and Rug-pulls.
SECURITY HACKS:
1. Social Media Accounts Compromised
From July 31 to August 6, the following social media accounts were compromised and phishing links might be sent in these accounts:
Discord servers of Bondex@bondexapp, MERGE Z@MERGEZ_NFT, AltLayer@alt_layer and Clique@Clique2046 and
X accounts of KaratDAO@KaratDAO and Avalaunch@AvalaunchApp
2. LeetSwap Suffers Exploit
On August 1, a Base deployed DeFi application LeetSwap suffered an exploit.
The attacker’s address is 0x5B030F90db67190373dbF3422436df4C62f60a60 on Base.
Crypto assets worth around US $630,000 were exploited in this incident.
3. Uwerx Suffers Exploit
On August 2, an Ethereum deployed application Uwerx suffered an exploit.
The attacker’s address is 0x6057A831D43c395198A10cf2d7d6D6A063B1fCe4 on Ethereum.
Crypto assets worth around US $325,700 were exploited in this incident.
RUG-PULLS:
1. BALD Rug-pull
On August 1, a BASE deployed token BALD (0x27D2DECb4bFC9C76F0309b8E88dec3a601Fe25a8) was confirmed to be a rug-pull.
11,139 WETHs worth around US $20.3 million were exploited in this incident.
2. TT Token Rug-pull
On August 2, a BNB Chain deployed token TT (0xf9597eD215e2d452A8ee5bC34f57ccD067beF0bC) was confirmed to be a rug-pull.
278 BNBs worth around US $68,300 were exploited in this incident.
3. Clown Coin Rug-pull
On August 5, an Ethereum deployed token Clown Coin (0x08F579756660e93c8BA68C4283A91C14eB155EC9) was confirmed to be a rug-pull.
Crypto assets worth around US $35,000 million were exploited in this incident.
CONCLUSION-
11 notable security incidents have occurred in the past week. 6 were attacked on social medial accounts, 2 were attacks on smart contracts and 3 were rug-pulls.
A Reminder for Project Teams: Always test thoroughly. Do smart contract audits before deploying smart contracts on-chain. Be alert to any anomalies happening in the various social media accounts you manage.
A Reminder for Crypto Users: Be cautious about suspicious links, emails, websites, and projects launched by teams without established reputations.
It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.
To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:
For a better understanding of all things Web3.0: https://medium.com/@FairyproofT
Looking to strengthen the security of your project or looking for an audit? Contact us at
https://www.fairyproof.com/