according to PeckShieldAlert monitoring, address 0xa4C1...683f lost about 1.82 million USDC due to a phishing attack.

the SlowMist security team issued a warning that social engineering attacks using malicious software are once again on the rise. Hackers are luring victims into downloading malicious scripts by sending fake video call links. In a recent case, attackers invaded a victim's friend's Telegram account and used it to initiate a call invitation. The SlowMist team reminds users that if they detect an attack, they should take the following measures immediately:

1. Protect asset security - If wallet private keys or mnemonic backups are stored on a computer, transfer funds immediately;

2. Change passwords and enable two-factor authentication - Update passwords for Telegram, X, email, and exchange accounts, and check for any unknown logins;

3. Run a full antivirus scan - Use well-known security software such as AVG, Bitdefender, Kaspersky, etc.;

4. If there are still concerns, back up important files, reset the system, and scan all content before restoring.

according to Scam Sniffer monitoring, a victim lost $1.82 million worth of cUSDCv3 in a phishing transaction signature an hour ago.

CertiK, a blockchain security company, issued a warning. Its security team detected multiple suspicious transactions on the Arbitrum network. An attacker with the address 0x97d8170e04771826a31c4c9b81e9f9191a1c8613 may have exploited a vulnerability to bypass signature verification and stole approximately $140,000 from multiple unverified exchange adapter contracts.

On March 7th, according to community members' feedback, a deposit of 74 BTC was not recorded with the corresponding transaction hash on the mainnet yesterday. Currently, only 88 BTC of existing deposits remain on the Odin platform, indicating that the platform may have been hacked. In addition, crypto influencer Yuyue mentioned that the platform funds are temporarily unable to be withdrawn.

Carrie Lam, the chief executive of Hong Kong, X account is suspected of being stolen and released token-related content. Users should be aware of the risks.

The Bitrace on-chain security analysis team revealed that the Loopring hacker has started transferring the stolen funds, with 30 ETH already transferred to the cross-chain protocol Thorchain. Bitrace team issued a warning on social media, reminding the Loopring community to stay vigilant.

SlowMist security team revealed a critical vulnerability in the widely used elliptic encryption library (GHSA-vjh7-7g9h-fjfh). Attackers can extract private keys with just one signature by constructing specific inputs, which could lead to the theft of digital assets or identity credentials. This vulnerability may affect blockchain applications and digital identity systems that rely on this encryption library.

SlowMist posted on the X platform, stating that suspicious activities related to a series of tokens created by a contract named Pump on the BSC Chain have been detected. Please stay vigilant.

The Web3 security company SlowMist reminded that the variant attack of "Safeguard" on Telegram is spreading. Users need to pay attention to randomly sent false "account risk" information and push false security check information. If handled improperly for "verification", the account will be taken over and private keys will be stolen and used to defraud other friends on Telegram.