Threat Information Report

On May 3, 2024, there was a theft of 1,155.28 WBTC worth over $68 million as a result the «dust» attack.https://twitter.com/realscamsniffer/status/1786374327740543464However, on May 10th, all WBTC that has been swapped to ETH was returned to the user 0x1E227979f0b5BC691a70DEAed2e0F39a6F538FD5. Although all funds have been returned to user, we will continue to remain threat actor wallets as blacklist for attempting illegal activity, Link : https://cointelegraph.com/news/trader-loses-68-million-address-poisoning-scam

On 18th July 2024, WazirX, a prominent cryptocurrency exchange, experienced a catastrophic security breach resulting in a loss of over $235 million. The attack was meticulously planned and executed over 10 days, ultimately compromising their multisig wallet by upgrading it to a malicious implementation. Link : https://x.com/WazirXIndia/status/1813981143437611440?lang=enAttacker Address that move funds to Tornado : https://etherscan.io/address/0x361384e2761150170D349924A28d965f0Dd3F092

On July 16, 2024, LiFi Protocol experienced a significant security breach that exploited the LiFi Diamond Contract. The exploit led to the loss of approximately $9.7 Million in various stablecoins and other assets at the time of writing. The attacker was able to drain funds from users who had granted infinite approvals to the contract. The LiFi Protocol team has taken immediate steps to contain the breach and mitigate further risks.Link : https://x.com/lifiprotocol/status/1813207291778215955 Link : https://li.fi/knowledge-hub/incident-report-16th-july/Attacker Address that move funds to Tornado : https://etherscan.io/address/0x8B3Cb6Bf982798fba233Bca56749e22EEc42DcF3

The attack works like this: • Malicious ads are served through Google Ad Network • Ads load suspicious code from Adloox (http://adlooxtracking.com) • Code checks if you have a web3 wallet • If detected, redirects to pudqypenguin[.]com (FAKE site!) Link : https://x.com/realScamSniffer/status/1815917388136866201 Funds were moved to Tornado Cash and also ThorChain

In an unfortunate turn of events, BigWhale.io experienced a security breach that resulted in the unauthorized access and theft of 7000+ BNB from its smart contract on October 3 2023, 5:01:14 UTC (roughly worth $1.5 million as of the time of attack) due to a private key breach. Link : https://docs.bigwhale.io/hacking-incident

HTX [HT], formerly Huobi, a prominent Hong Kong-based centralized cryptocurrency exchange, faced a cyber-attack on 24 September that resulted in significant losses, the hacker managed to steal approximately $8 million worth of cryptocurrencies. In the event of hack, funds were then recovered to HTX wallet 0x18709E89BD403F470088aBDAcEbE86CC60dda12e Link : https://www.htx.com/en-in/feed/community/2526192/

Wallet addresses linked to the Play2Earn Mysterian Russian scam campaign Link : https://www.reddit.com/r/Buttcoin/comments/1130gyv/how_the_play2earn_scam_works/

On 11 January 2023, The UF Dao of @xdaoapp was hacked, https://bscscan.com/tx/0x933d19d7d822e84e34ca47ac733226367fbee0d9c0c89d88d431c4f99629d77a Due to the incorrect parameter setting. The attacker bought a public offer of the UF Dao with 1:1 rate using USDC, then redeemed almost all in UF Dao. Several Exchanges user wallets were identified and also 22 ETH was laundered via Tornado Cash

Decentralized AI data network Masa experienced a hack on September 20. The attack resulted in losses exceeding six figures in USD. Masa has not disclosed this incident to the community. Link : https://www.binance.com/en/square/post/2024-10-18-decentralized-ai-data-network-masa-suffers-significant-hack-15035091424953

In October 2024, Tapioca DAO became one of many DeFi projects to suffer a private key compromise this year. In this case, the attacker managed to steal an estimated $4.4 million from the protocol, though some funds were recovered. Link : https://www.dlnews.com/articles/defi/tapioca-dao-tap-token-plummets-after-founder-suffers-hack/