The ecosystem has now witnessed $1.74 billion in losses year-to-date, though Bybit's $1.46 billion exploit accounts for most of the sum.
The Solana-based DeFi protocol said it heard from the exploiter, who is willing to return the exploited funds for a 3,947 SOL bounty.
Another DeFi protocol, Impermax, was also attacked on Saturday, adding to a recent spate of damaging hacks, exploits, and errors.
The following article is adapted from The Block’s newsletter, The Daily, which comes out on weekday afternoons.
North Korean hackers created three companies — two of which were US-based — to distribute malware to cryptocurrency developers.
ZKSync confirmed that it had fully recovered approximately $5 million in ZK tokens stolen during a recent breach involving its airdrop distribution contracts after reaching an agreement with the exploiter. The announcement, made on social media on April 23, stated that the hacker returned the funds within a 72-hour “safe harbor” window offered by the […]
The post ZKSync reclaims stolen $5 million tokens after hacker claims bounty offer appeared first on CryptoSlate.
Aikido Security disclosed a vulnerability in the XRP Ledger’s (XRPL) official JavaScript SDK, revealing that multiple compromised versions of the XRPL Node Package Manager (NPM) package were published to the registry starting April 21. The affected versions, v4.2.1 through v4.2.4 and v2.14.2, contained a backdoor capable of exfiltrating private keys, posing a severe risk to […]
The post XRP Ledger developer kit compromised with backdoor to steal wallet private keys appeared first on CryptoSlate.
The issue was discovered by Aikido Security, which noted the vulnerability could lead to a “potentially catastrophic” supply chain attack.
Over 93% of WazirX creditors recently approved a restructuring plan that aims to recover approximately 85.3% of users’ lost balances.
The amount of stolen funds from the Bybit hack that have slipped out of reach continues to rise as the days go by. On April 21, Bybit CEO Ben Zhou revealed that around $400 million, around 27.6% of the $1.4 billion in stolen Ethereum, can no longer be traced. This represents a sharp increase from […]
The post Bybit seeks community help as $400 million in stolen Ethereum vanishes through Wasabi mixer appeared first on CryptoSlate.
Untraceable funds flowed into mixers then through bridges to P2P and OTC platforms, Bybit CEO Ben Zhou said.
Decentralized exchange platform KiloEx revealed that it has recovered the entire $7.5 million stolen from it in a recent exploit. According to an April 18 statement: “We are pleased to announce that we have successful recovery of all stolen funds related to the recent security incident.” The exploit was first flagged by Cyvers, a blockchain […]
The post kiloEx recovers $7.5M after promising attacker 10% bounty appeared first on CryptoSlate.
The exchange said it will close down on May 1, and said that there is a 'transatlantic operation' to prosecute the project.
A compromised admin account connected to ZKsync’s airdrop contracts executed a transaction that minted approximately $5 million worth of ZK tokens, stealing the remaining unclaimed allocation from the network’s first token distribution. The attacker exploited a function to claim the tokens on April 15 and issued around 111 million ZK tokens, equivalent to roughly 0.45% […]
The post ZKsync admin wallet compromised in $5 million theft, ZK slides over 8% appeared first on CryptoSlate.
The following article is adapted from The Block’s newsletter, The Daily, which comes out on weekday afternoons.
The ZK token, introduced in June 2024 through a controversial airdrop, is down approximately 15%, according to The Block's data page.
Researchers have discovered a malicious software package uploaded to npm that secretly alters locally installed versions of crypto wallets and allows attackers to intercept and reroute digital currency transactions, ReversingLabs revealed in a recent report. The campaign injected trojanized code into locally installed Atomic and Exodus wallet software and hijacked crypto transfers. The attack centered […]
The post Malicious npm package secretly targets Atomic, Exodus wallets to intercept and reroutes funds appeared first on CryptoSlate.
Cybercriminals are targeting crypto users by exploiting SourceForge, a well-known open-source software platform. According to security experts at Kaspersky, malicious attackers upload fake Microsoft Office installers packed with hidden malware, including crypto miners and clipboard hijackers, to deceive unsuspecting users. They noted that while the SourceForge project pages appear legitimate, the danger lies in their […]
The post Crypto users targeted in SourceForge malware attack via fake Microsoft Office softwares appeared first on CryptoSlate.
The alleged scammer behind the ZKasino rug pull has reportedly lost over $27 million in a high-risk Ethereum trade as crypto market turbulence continues to catch overleveraged traders. On April 7, blockchain analytics platform Onchain Lens revealed that the scammer had exited a 20x leveraged long position on ETH using the Hyperliquid trading platform. The […]
The post ZKasino scammer’s risky Ethereum trade backfires with $27M loss amid market turmoil appeared first on CryptoSlate.
Blockchain intelligence platform SpotOnChain reported that North Korea’s state-backed hacking group, Lazarus, has pocketed over $2.5 million in profit from a recent sale of wrapped Bitcoin (WBTC). On April 3, the group sold 40.78 WBTC for 1,857 ETH, worth roughly $3.51 million. The sale marks a sharp return on their February 2023 investment, when they […]
The post North Korean hackers net $2.5 million profit after WBTC sales appeared first on CryptoSlate.
The attack on Bybit in February, which saw nearly $1.5 billion worth of digital assets stolen, was the largest hack of a crypto exchange in dollar terms ever.
The crypto payments platform UPCX temporarily halted deposits and withdrawals following a security breach that may have led to the loss of around $70 million in digital assets. On April 1, the platform revealed it had detected unauthorized access to a management account. In response, UPCX immediately suspended all user transactions as a precaution while […]
The post UPCX halts transactions after $70 million hack exposes vulnerabilities appeared first on CryptoSlate.
ZkLend, a decentralized lending protocol built on Starknet, has confirmed that the hacker responsible for its February exploit lost a significant portion of the stolen funds to a phishing scam. In an April 1 post on X, ZkLend revealed that the attacker tried to launder 2,930 ETH, worth around $5.4 million, through crypto mixer Tornado […]
The post Hacker falls victim to phishing scam after exploiting ZkLend for millions appeared first on CryptoSlate.
BNB Chain surpassed Ethereum to become the most targeted network in Q1, accounting for 19 individual attacks.
Blockchain security firm Cyvers has reported a major security breach that affected DeFi platform Abracadabra’s MIM_Spell platform. The attack led to the loss of 6,262 ETH, equivalent to around $12.9 million. According to Cyvers, the attacker quickly bridged the stolen ETH to the Ethereum network and distributed the funds across three newly generated wallets. MIM […]
The post DeFi platform MIM Spell offers 20% bounty to hacker after $12.9 million ETH heist appeared first on CryptoSlate.
An attacker drain approximately 6,262 ETH, valued at around $13 million, from Abracadabra’s liquidity pools on GMX.
Zoth, an Ethereum-based platform focused on tokenized real-world assets, suffered a second major security breach in less than three weeks on March 21, with attackers draining $8.85 million in digital assets. The company confirmed the breach and is working with security experts to investigate the incident. Zoth is also offering a $500,000 bounty for information […]
The post Ethereum-based RWA protocol Zoth hacked second time in a month for $8.85 million appeared first on CryptoSlate.
Crypto-focused media outlet Watcher Guru confirmed that its official X account was hacked to promote a fake report claiming Ripple and SWIFT were close to a deal to use XRP in global payment systems. The unauthorized post went live on March 21 at 2:05 A.M. UTC. It falsely stated that Ripple would soon partner with […]
The post Another popular crypto X account hacked, spreads fake Ripple-SWIFT partnership news appeared first on CryptoSlate.
The following article is adapted from The Block’s newsletter, The Daily, which comes out on weekday afternoons.
A portion of the funds (193 BTC or $16 million) passed through the Wasabi mixer before reaching various peer-to-peer vendors.