From June 12, 2023 to June 18, 2023, all security incidents that had occurred are all Security Hacks.
SECURITY HACKS:
1. Sturdy Finance Suffers Exploit
On June 13, an Ethereum deployed DeFi application Sturdy Finance suffered an exploit.
The attacker's address is 0x1E8419E724d51E87f78E222D935fbbdeb631a08B on Ethereum.
442 ETHs worth around US $800K were exploited in this incident.
2. Wicked Bone Club’s Discord Server Gets Compromised
On June 13, the discord server of Wicked Bone Club(@WickedBoneClub) was compromised. A phishing link was sent in the Discord server. Wicked Bone Club is an NFT application deployed on Solana.
3. Kevin Svenson’s Discord Server and Twitter Account Get Compromised
On June 14, the Discord server and Twitter account of a Web 3 influencer Keven Svenson(@KevinSvenson_) were compromised.
4. Beamer Bridge’s Discord Server Gets Compromised
On June 15, the discord server of Beamer Bridge(@BeamerBridge) was compromised. Beamer Bridge is a cross-chain bridge.
5. Hashflow Suffers Exploit
On June 15, a multi-chain deployed DeFi application Hashflow suffered an exploit.
The root cause was that it has a transferFrom function which allowed a hacker to steal approved assets.
The hacker’s address is 0xddb19a1bd22c53dac894ee4e2fbfdb0a06769216 on Ethereum.
Crypto assets worth around US $600k were exploited in this incident.
6. LayerZero Corner’s Discord Server Gets Compromised
On June 15, the discord server of LayerZero Corner(@L0_Corner) was compromised. LayerZero is a layer 0 blockchain.
7. DEPUSDT and LEVUSDC Suffer Exploits
On June 15, two Ethereum deployed tokens DEPUSDT and LEVUSDC suffered exploits.
36K USDCs and 69.96K USDTs total worth around US $105.8K were exploited in this incident.
8. ZKX’s Discord Server Gets Compromised
On June 16, the discord server of ZKX(@zkxprotocol) was compromised. ZKX is a DeFi application deployed on StarkWare.
9. Shell Protocol’s Discord Server Gets Compromised
On June 16, the Discord server of Shell Protocol(@ShellProtocol) was compromised. Shell Protocol is a DeFi application deployed on Ethereum.
10. Wombat’s Discord Server Gets Compromised
On June 16, the discord server of Wombat(@adoptwombat) was compromised. Wombat is a Web 3 game platform deployed on multiple chains including Ethereum and Polygon.
11. Fluffy Polar Bears’ Discord Server Gets Compromised
On June 17, the discord server of Fluffy Polar Bears(@polarbearsnft) was compromised. Fluffy Polar Bears is an NFT application deployed on Ethereum.
12. Steady Stack’s Discord Server Gets Compromised
On June 17, the discord server of Steady Stack(@SteadyStackNFT) was compromised. Steady Stack is an NFT application deployed on Ethereum.
13. Midas Capital Suffers Exploit
On June 17, a multi-chain deployed DeFi application Midas Capital suffered an exploit.
The root cause was that the contracts had a rounding issue. The team claimed that the incident was isolated to a single pool and all pools were paused.
The hacker’s address is 0x4b92cC3452Ef1E37528470495B86d3F976470734 on the BNB Chain.
Crypto assets worth around US $600K were exploited in this incident.
CONCLUSION-
13 notable security incidents have occurred in the past week. 4 were attacks on smart contracts and 9 were attacks on social media.
A Reminder for Project Teams: Always test thoroughly. Do smart contract audits before deploying smart contracts on-chain. Be alert to any anomalies happening in the various social media accounts you manage.
A Reminder for Crypto Users: Be cautious about suspicious links, emails, websites, and projects launched by teams without established reputations.
It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.
To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:
For a better understanding of all things Web3.0: https://medium.com/@FairyproofT
Looking to strengthen the security of your project or looking for an audit? Contact us at
https://www.fairyproof.com/