Cointime

Download App
iOS & Android

Security

Multiple incidents of stETH being stolen and cross-chained to the Blast mainnet were discovered. The victim’s mnemonic words/private keys may have been leaked.

SlowMist founder, Yu Xian, posted on X platform stating that SlowMist and MistTrack have received at least four cases of stETH being stolen and cross-chain transferred to the Blast mainnet. The common feature is that a small amount of ETH transaction fee is sent from an address with obvious traces (including exchanges) to the stolen address, and then stETH is cross-chain transferred to the Blast mainnet for subsequent transfer, and finally the remaining small amount of ETH in the victim's address is transferred to different ETH addresses. The known loss exceeds 100 stETH, and it is likely a group event. The mnemonic phrase/private key of these victims must have been leaked, and the attackers lurked to start on the Blast mainnet. Previously, Scam Sniffer monitoring showed that a certain address lost over 10 BTC pledged on Aave and some PANDORA due to interaction (clicking on the signature authorization) with a fake Blast airdrop website, with a total loss of approximately $717,817.

47 NFTs were lost due to phishing at a certain address

PeckShield monitoring shows that address 0xbA00...46A3 has become a victim of phishing, resulting in the loss of 47 NFTs, including Bored Ape Yacht Club #1737, Mutant Ape Yacht Club #12690, #2134, and Bored Ape Kennel Club #8435, #7153, #8740, and #8552.

A certain address lost more than 10 BTC when visiting the Blast fake airdrop website.

Scam Sniffer monitoring shows that an address lost over 10 BTC pledged on Aave and some PANDORA, with a total loss of about $717,817 due to interaction (clicking on signature authorization) with a fake Blast airdrop website.

The anti-capital hacker group claimed to have attacked the official website of Grayscale, which is currently inaccessible.

According to the anti-capitalist hacker group Capital Killer on social media X, Grayscale's official website has been attacked and this is a gift to the AVAV community in support of fairness and anti-capitalism. Currently, the Grayscale official website is inaccessible. It is reported that former US President Obama's X account has followed the anti-capitalist hacker group.

SenecaUSD sent a message to the hacker on the chain saying that if the funds are returned, 20% will be retained

SenecaUSD project on the ETH chain sent a message to hackers on the chain, saying, "Dear white hat, please return the funds to the following Ethereum wallet address: 0xb7aF0Aa318706D94469d8d851015F9Aa12D9c53a. We are cooperating with third-party security providers and law enforcement agencies to track funds and identify recipient wallets. It is crucial to take timely action, so we urge you to return the funds as soon as possible to avoid further legal action. Based on white hat actions, a 20% bounty may be retained. " As previously reported by Golden Finance, according to the BeosinTrace fund analysis platform, there is a vulnerability in the SenecaUSD project contract on the ETH chain, which has been exploited for over 1900 ETH, worth over $6.5 million.

Scam Sniffer: One user lost $1.54 million to phishing scams

Scam Sniffer on X platform stated that approximately 2 hours ago, a user lost 1.54 million USD worth of stETH and wstETH due to phishing scams.

Ancilia: NFT staking project Two3 Labs was hacked

Ancilia stated on X platform that the NFT collateral project Two3 Labs was attacked, and hackers stole MOOVE tokens and exchanged them for USDC using Paraswap.

Seneca was attacked by hackers, users please cancel authorization immediately

According to SlowMist monitoring, Seneca was exploited due to open external calls. Users are advised to cancel authorization in a timely manner.

The anti-capital hacker group claimed to have attacked the a16z official website. The a16z official website is currently inaccessible.

According to the anti-capitalist hacker group @BTC_X__, a16z's official website has been attacked. The group claimed it was a gift to the AVAV community and will uphold fairness and anti-capitalism. Currently, the A16Z official website shows that access is timed out. It is reported that former US President Obama's X account has followed the anti-capitalist hacker group.

US$5.6 million worth of assets were stolen from the Serenity Shield team’s wallet, and the price of the token SERSH dropped 75% in 24 hours

According to Cointelegraph, the SERSH token of the blockchain data storage protocol Serenity Shield has plummeted by almost 99% as approximately 6.9 million SERSH tokens worth $5.6 million were stolen from a MetaMask wallet belonging to the team. The hack occurred on February 27 at 17:00 Beijing time, when the 6.9 million SERSH tokens were transferred from the project's MetaMask wallet to an unidentified third-party wallet. CoinGecko data shows that the price of SERSH was trending downward for about 5 hours before suddenly dropping 98% from $0.565 to $0.009 in 5 minutes.The project stated that SERSH will be relaunched using a new token contract, but did not disclose a timetable. Serenity Shield also stated that it is "actively working" to redeploy all liquidity to the new smart contract and replace any liquidity from the hack.The current price of SERSH is $0.57, with a 75% drop in the last 24 hours.