Cointime

Download App
iOS & Android

Security

About 1.82 million USDC was stolen from a certain address due to a phishing attack

according to PeckShieldAlert monitoring, address 0xa4C1...683f lost about 1.82 million USDC due to a phishing attack.

SlowMist: Social engineering attacks using malicious video call links are on the rise again, users should be vigilant about security

the SlowMist security team issued a warning that social engineering attacks using malicious software are once again on the rise. Hackers are luring victims into downloading malicious scripts by sending fake video call links. In a recent case, attackers invaded a victim's friend's Telegram account and used it to initiate a call invitation. The SlowMist team reminds users that if they detect an attack, they should take the following measures immediately:

1. Protect asset security - If wallet private keys or mnemonic backups are stored on a computer, transfer funds immediately;

2. Change passwords and enable two-factor authentication - Update passwords for Telegram, X, email, and exchange accounts, and check for any unknown logins;

3. Run a full antivirus scan - Use well-known security software such as AVG, Bitdefender, Kaspersky, etc.;

4. If there are still concerns, back up important files, reset the system, and scan all content before restoring.

Security Agency: A user lost $1.82 million in cUSDCv3 due to phishing transaction signature

according to Scam Sniffer monitoring, a victim lost $1.82 million worth of cUSDCv3 in a phishing transaction signature an hour ago.

CertiK: Arbitrum detects arbitrary call vulnerability, hackers have stolen about $140,000

CertiK, a blockchain security company, issued a warning. Its security team detected multiple suspicious transactions on the Arbitrum network. An attacker with the address 0x97d8170e04771826a31c4c9b81e9f9191a1c8613 may have exploited a vulnerability to bypass signature verification and stole approximately $140,000 from multiple unverified exchange adapter contracts.

Odin.fun is suspected to be hacked, users should pay attention to asset security

On March 7th, according to community members' feedback, a deposit of 74 BTC was not recorded with the corresponding transaction hash on the mainnet yesterday. Currently, only 88 BTC of existing deposits remain on the Odin platform, indicating that the platform may have been hacked. In addition, crypto influencer Yuyue mentioned that the platform funds are temporarily unable to be withdrawn.

Hong Kong Chief Executive John Lee's X account is suspected to be stolen, and he published content related to tokens

Carrie Lam, the chief executive of Hong Kong, X account is suspected of being stolen and released token-related content. Users should be aware of the risks.

Bitrace: Loopring hackers begin to transfer funds, 30 ETH have been transferred to Thorchain

The Bitrace on-chain security analysis team revealed that the Loopring hacker has started transferring the stolen funds, with 30 ETH already transferred to the cross-chain protocol Thorchain. Bitrace team issued a warning on social media, reminding the Loopring community to stay vigilant.

SlowMist: A critical vulnerability was found in the elliptic encryption library, which may lead to private key leakage

SlowMist security team revealed a critical vulnerability in the widely used elliptic encryption library (GHSA-vjh7-7g9h-fjfh). Attackers can extract private keys with just one signature by constructing specific inputs, which could lead to the theft of digital assets or identity credentials. This vulnerability may affect blockchain applications and digital identity systems that rely on this encryption library.

SlowMist: Suspicious activities have been detected related to a series of tokens created through a contract called Pump on BSC Chain, please remain vigilant

SlowMist posted on the X platform, stating that suspicious activities related to a series of tokens created by a contract named Pump on the BSC Chain have been detected. Please stay vigilant.

SlowMist: The "Safeguard" variant attack on Telegram is spreading. Beware of the fake "account risk" messages sent randomly

The Web3 security company SlowMist reminded that the variant attack of "Safeguard" on Telegram is spreading. Users need to pay attention to randomly sent false "account risk" information and push false security check information. If handled improperly for "verification", the account will be taken over and private keys will be stolen and used to defraud other friends on Telegram.