Hacker behind $2M crypto heist receives job offer from victim protocol

Despite losing $2 million in a smart contract exploit, Bedrock offered the hacker a role to help secure its protocol and recover stolen funds.

View Details

Telegram bot Banana Gun to absorb $3M loss from hack

Banana Gun has confirmed a $3 million loss caused by a vulnerability in its trading bot, which impacted experienced crypto traders.

View Details

Zero-day vulnerability in Chrome exploited by North Korean hackers

A hacker group is using its signature trojan malware to infect users of web browsers with Chromium engines. 

View Details

Styx Stealer malware exploits Windows vulnerability to clip crypto

Styx Stealer steals data and can reroute crypto transactions coming from an infected computer to the bad actors wallet.

View Details

Critical RCE Vulnerabilities Discovered in Kafka UI

Researchers identified three critical remote code execution (RCE) vulnerabilities in Kafka UI. Users are advised to upgrade to version 0.7.2 to mitigate risks. (Read More)

View Details

Oracle exploit drains $7.6M from Rho Markets liquidity protocol

Rho Markets has already paused its platform in response to the security breach.

View Details

Crypto execs on DeFi domain hacks: Dont interact with crypto for now

CoinGecko founder Bobby Ong explained that after Google sold its domain business to Squarespace, two-factor authentication was removed due to the forced migration of domains.

View Details

OKX investigates multimillion account thefts after SIM swap attacks

According to SlowMist, despite the two similar phishing incidents, OKXs two-factor authentication mechanism was not the main vulnerability point.

View Details

Losses due to crypto hacks fall 67%, Bitcoin DeFi interest rises: Finance Redefined

The amount stolen through crypto hacks and the number of successful attacks sharply declined in April.

View Details

Tether Exploit Leads to $78 Million Theft Due to Multi-Sig Freeze Delay

Key Takeaways: Blockchain forensic company AMLBot has discovered a fundamental flaw in Tether’s USDT freezing system that has been exploited by malicious actors to drain over $78 million since 2017. The essence of the problem lies in the multi-signature approval procedure for freezing wallets associated with USDT, which creates a lag between the actual request […]

View Details

Security firm discovers $500M vulnerability in Tron multisig accounts

After reporting the vulnerability to Tron in February, the researchers highlighted that the issue was promptly addressed and resolved within a few days.

View Details

PH Developer on Bybit Hack: A Classic Case of Social Engineering

BayaniChain CEO Paul Soliman explains how the $1.46 billion Bybit hack was a textbook social engineering attack, not a blockchain failure.

View Details

Ledger Hardware Wallet Assists Trezor in Resolving Security Vulnerability

Trezor Fixes Security Vulnerability Uncovered by Ledger Trezor, a popular hardware wallet provider, has addressed a security issue that was brought to light by its competitor, Ledger. The vulnerability allowed potential attackers to manipulate the device’s software, compromising the security of users’ funds. After being alerted to the flaw by Ledger, Trezor worked swiftly to [...]

The post Ledger Hardware Wallet Assists Trezor in Resolving Security Vulnerability appeared first on Crypto Breaking News.

View Details

THORChain Pauses Network Amid Reports of Vulnerability

THORChain has temporarily halted trading due to a potential network vulnerability, causing its native token, Rune, to fall 5% in value. (Read More)

View Details

$4M 'exit scam' suspected as Kokomo Finance flies off radar, token plunges

Kokomo Finance's social media presence and websites are offline, while the price of the KOKO token fell more than 95% within a matter of minutes.

View Details

Euler Finance suffers $197M DeFi hack

Decentralized finance (DeFi) protocol Euler Finance lost nearly $197 million in a flash loan attack on March 13, impacting more than 11 other DeFi protocols. The vulnerability remained on-chain for eight months despite a $1 million bug bounty in place. Euler Finance disabled the vulnerable etoken module and vulnerable donation function, and has reached out to security firms and the ETH security community to help with the investigation and recover the stolen funds. (Read More)

View Details

More than 280 blockchains at risk of ‘zero-day’ exploits, warns security firm

Dogecoin, Zcash and Litecoin have already patched the “critical” vulnerability, but hundreds of others may not have, risking billions’ worth of crypto.

View Details

OpenSea patches vulnerability that potentially exposed users’ identities

Nonfungible token (NFT) marketplace OpenSea has reportedly patched a vulnerability that, if exploited, could expose identifying information about its anonymous users.  In a Mar. 9 blog, cybersecurity firm Imperva detailed how it discovered the vulnerability which it claimed could deanonymize OpenSea users “by linking an IP address, a browser session, or an email in certain [...]

The post OpenSea patches vulnerability that potentially exposed users’ identities appeared first on Crypto Breaking News.

View Details

What is ethical hacking, and how does it work?

Ethical hacking, also known as “white hat” hacking, is the process of identifying and exploiting vulnerabilities in a computer system or network in order to assess its security and provide recommendations for improving it. Ethical hacking is done with the permission and knowledge of the organization or individual that owns the system being tested. Ethical [...]

The post What is ethical hacking, and how does it work? appeared first on Crypto Breaking News.

View Details

Ankr confirms exploit, asks for immediate trading halt

The decentralized-finance protocol said it is working with exchanges to immediately halt trading of its BNB staking rewards token, aBNBc.

View Details