Showing 5 Result(s)

Multichain vulnerability put a billion dollars at risk, says security firm

The Multichain bug that has led to the theft of $2 million in crypto (so far) could have been “enormous,” according to the company that disclosed the vulnerability last week. Blockchain security firm Dedaub, which disclosed the bug on January 10, has published a blog post providing more details. It said that the amount of money at risk could have been worth more than $1 billion. “​​Given the above, the potential practical impact (had the vulnerability been fully exploited) is …

Cross-chain protocol Multichain bug gets exploited for $1.34 million

Quick Take A bug in cross-chain protocol Multichain has been exploited for $1.34 million, according to researchers. While the bug had already been fixed for new users, past users needed to take action to prevent themselves from being affected. Cross-chain protocol Multichain (previously known as Anyswap) has been exploited for $1.34 million — according to security researchers PeckShield. This occured through a bug that the platform had recently dislosed. On January 17, Multichain revealed that it had found a critical …

Crypto exchange BitMart reportedly hacked for $100 million

Crypto exchange BitMart has been hacked for $100 million, according to security researchers PeckShield. At 7.30 PM UTC, PeckShield first noticed an excessive amount of outbound transfers. It found that a range of tokens had been sent out of BitMart’s hot wallet, starting at 4.30 PM EST. These tokens included large amounts of meme tokens like shiba (SHIB), plus half a million dollars in the stablecoin USDC. Other commentators have pointed out that funds have also been removed on the …

Solana library bug could have seen attackers stealing $27 million an hour

A bug in the Solana Protocol Library (SPL) — a set of reference documents for Solana projects — could have seen attackers steal money from multiple Solana projects at a rate of $27 million an hour, according to security researchers at Neodyme. The projects that were affected included yield aggregator Tulip Protocol and lending protocols Solend and Larix. These projects currently look after $1.7 billion in funds (although that was considerably higher before today’s market crash).  Uncovering a billion-dollar bug …

Hacked cloud accounts are being used to mine crypto, says Google

A report released this week by Google indicates that a majority of recently attacked accounts on its Google Cloud Platform service were used to mine cryptocurrency. The Threat Horizons report for November stated that “[m]alicious actors were observed performing cryptocurrency mining within compromised Cloud instances.” “Of 50 recently compromised GCP instances, 86% of the compromised Google Cloud instances were used to perform cryptocurrency mining, a cloud resource-intensive for-profit activity, which typically consumed CPU/GPU resources, or in cases of Chia mining, …