From May 22, 2023 to May 28, 2023, all security incidents that had occurred are all Security Hacks.
SECURITY HACKS:
1. Venom Bridge’s Discord Server Gets Compromised
On May 22, the discord server of VenomBridge(@VenomBridge) was compromised. Venom Bridge is a cross-chain bridge.
2. Asymmetry Finance’s Discord Server Gets Compromised
On May 23, the discord server of Asymmetry Finance(@asymmetryfin) was compromised. Asymmetry Finance is a DeFi application deployed on Ethereum.
3. Luna Fi Suffers Exploit
On May 23, a Polygon deployed DeFi application Luna Fi suffered an exploit.
The contract is deployed at 0x77D97db5615dFE8a2D16b38EAa3f8f34524a0a74 on Polygon.
The attacker’s address is 0x11576cb3d8d6328cf319e85b10e09a228e84a8de on Polygon.
Crypto assets worth around US $35,000 were exploited in this incident.
4. Meme.com’s Discord Server Gets Compromised
On May 23, the discord server of Meme.com(@MemeExplorers) was compromised. Meme.com is a platform for Meme coins.
5. Ocean Protocol’s Discord Server Gets Compromised
On May 23, the discord server of Ocean Protocol(@oceanprotocol) was compromised. Ocean Protocol is a DeFi application deployed on Ethereum.
6. MetaStars Striker’s Discord Server Gets Compromised
On May 23, the discord server of MetaStars Striker(@metastargame) was compromised. MetaStars Striker is a game deployed on Polygon.
7. Mail3’s Discord Server Gets Compromised
On May 24, the discord server of Mail3(@mail3dao) was compromised. Mail3 is a Web3 mail application deployed on multiple blockchains including Ethereum, Solana and more.
8. CS Token Suffers Flashloan Attack
On May 24, a BNB chain deployed DeFi token CS suffered a flashloan attack.
The token is deployed at 0x8BC6Ce23E5e2c4f0A96429E3C9d482d74171215e on the BNB chain.
Crypto assets worth around US $714,000 were exploited in this incident.
9. Local Traders Suffers Exploit
On May 24, a CEX Local Traders suffered an exploit.
Basically the CEX’s token LCT deployed at 0x5C65BAdf7F97345B7B92776b22255c973234EfE7 on the BNB chain was acquired by a hacker at a discount before selling due to the token’s price being manipulated.
Crypto assets worth around US $118,000 were exploited in this incident.
10. Zerpmon’s Discord Server Gets Compromised
On May 24, the discord server of Zerpmon(@zerpmonxrp) was compromised. Zerpmon is a digital collectible application on XRP.
11. Eralend’s Discord Server Gets Compromised
On May 24, the discord server of Eralend(@Era_Lend) was compromised. Eralend is a DeFi application deployed on zkSync.
12. Cypher’s Discord Server Gets Compromised
On May 24, the discord server of Cypher(@cypher_protocol) was compromised. Cypher is a DeFi application deployed on Solana.
13. Love Hate Inu’s Discord Server Gets Compromised
On May 25, the discord server of Love hate Inu(@LoveHateInu) was compromised. Love Hate Inu is an application deployed on Ethereum.
14. LionDEX’s Discord Server Gets Compromised
On May 25, the discord server of LionDEX(@LionDEXOfficial) was compromised. LionDEX is a DeFi application deployed on Arbitrum.
15. Wistaverse’s Discord Server Gets Compromised
On May 25, the discord server of Wistaverse(@wistaverse) was compromised. Wistaverse is a metaverse application deployed on Polygon.
16. Port3 Network’s Discord Server Gets Compromised
On May 25, the discord server of Port3 Network(@Port3Network) was compromised. Port3 Network is a Web3 platform deployed on SUI.
17. Tocen’s Discord Server Gets Compromised
On May 25, the discord server of Tocen(@tocen__) was compromised. Tocen is a one-stop aggregator deployed on SUI.
18. Gold On Steroids’ Discord Server Gets Compromised
On May 26, the discord server of Gold On Steroids(@GoldOnSteroids) was compromised. Gold On Steroid is a gold trading platform deployed on Ethereum.
19. Neutra Finance’s Discord Server Gets Compromised
On May 27, the discord server of Neutra Finance(@Neutrafinance) was compromised. Neutra Finance is a DeFi application deployed on Arbitrum.
20. GFAL’s Discord Server Gets Compromised
On May 27, the discord server of GFAL(@GFAL_Official) was compromised. GFAL is a Web 3 game deployed on the BNB Chain.
21. Nahmii’s Discord Server Gets Compromised
On May 27, the discord server of Nahmii(@Nahmii_io) was compromised. Nahmii is an Ethereum Layer 2 solution.
22. Jimbos Protocol Suffers Exploit
On May 28, an Arbitrum deployed protocol Jimbos Protocol suffered an exploit..
The root cause was that its shift function didn’t have slippage control and this was exploited by an hacker to drain tokens off its liquidity providers.
Around 4000 ETHs worth US $7.5 million were exploited in this incident.
RUG-PULLS:
1. SeaSwap Rug-pull
On May 26, the discord server of Sea Swap(@SeaSwapSui) was confirmed to be rug-pull.
Crypto assets worth around US $32000 were exploited in this incident.
CONCLUSION-
23 notable security incidents have occurred in the past week. 1 was a rug-pull and 22 were attacks on dApps. Among those attacks on dApps, 3 were attacks on smart contract and 19 were attacks on social media.
A Reminder for Project Teams: Always test thoroughly. Do smart contract audits before deploying smart contracts on-chain. Be alert to any anomalies happening in the various social media accounts you manage.
A Reminder for Crypto Users: Be cautious about suspicious links, emails, websites, and projects launched by teams without established reputations.
It is important for everyone in the crypto community to gain understanding and practice sufficient levels of cybersecurity.
To stay updated on notable security incidents in the world of Web3.0, subscribe to our newsletter:
For a better understanding of all things Web3.0: https://medium.com/@FairyproofT
Looking to strengthen the security of your project or looking for an audit? Contact us at
https://www.fairyproof.com/