Events Under the Spotlight 🔎
A Bug was discovered in Comet
A critical bug was disclosed in Compound Finance V3’s new protocol, Comet due to an improper bitwise operation.
OpenSea emails leaked
In an official post, leading NFT marketplace, OpenSea disclosed that their emails were leaked due to an insider threat from their email delivery vendor, Customer.io.
The employee accessed the email database provided by OpenSea, which they downloaded and shared with an unauthorised external party.
$MAD token was hacked for 556 BNB
$MAD token was hacked by directly calling the transfer() function of the contract holding tokens, and made a profit of $115,681 or 556 BNB.
The hacker transferred out all the $MAD tokens, which were transferred to Tornado Cash.
The sensitive transfer() function was left publicly available and the caller was not verified, which led to this theft.
$QUINT token, suffered a hack for ~$100K
Metaverse project on BNB Chain, $QUINT token, suffered a hack which claimed ~$100K from the NFT platform.
The Quint smart contract had a bug where the smart contract did not calculate the time of staking the intellectual property, which allowed endless staking to the hacker and claimed interests.
Quixotic’s contract was exploited
In a recent update in the largest NFT marketplace on Optimism, Quixotic’s smart contract caused the platform to be exploited, enabling an attacker to steal approved ERC-20 tokens.
The team started to reimburse tokens to all the affected users in the hack.
The vulnerability existed because only the sell order was checked and not the buy order on the platform.
The hacker created an NFT, called the smart contract function, to generate a sell order for the NFT, passing the victim's wallet address and the token approved by the user to steal user-owned assets.
Over $100,000 worth of user assets were stolen in the heist.
Ankr Got Hacked For Polygon & Fantom Networks
Polygon (Matic) and Fantom (FTM) RPC from Ankr were hijacked due to DNS domain hijacking.
This was made possible due to an insider threat from Gandi.net, where an employee was compromised (phished) to change domain registration details.
To the Numerophiles out there 🔢
Chelsea legend John Terry’s NFT scheme loses 99 per cent of value as it becomes the latest crypto to crash in the price
Word on the Block📦
Pegging
Versus Series🛡️
Bull Market VS Bear Market
Stay updated with the latest happenings in the blockchain world; join our Discord community here🤝.