Events Under the Spotlight
Optimism Fixes "Critical Bug"
Optimistic, a layer-2 scaling solution for Ethereum, patched a critical vulnerability that would have allowed an attacker to mint an arbitrary amount of tokens.
DeFi Project Dego Finance Hacked: Exploiters Drain Over $10M
Dego Finance, a metaverse game on BSC, was exploited due to a compromised key.
The address providing liquidity on UniSwap and PancakeSwap was hacked.
It drained the project's liquidity, and the token price plummeted 78%.
The exploiters stole user funds worth more than $10 Million.
BabyMuskCoin Rug Pulls $660K in BNB
BabyMuskCoin, a meme coin on BSC rug pulled investors for 1,571 BNB worth $660K.
The scam is claimed to originate from Telegram, and the project’s Twitter and website have been shut down.
The stolen funds were moved through Tornado Cash from PancakeSwap.
Polygon stablecoin Qi Dao exploited for $13M
Qi DAO, Polygon's native stablecoin protocol ($MAI), Superfluid’s vesting contract for QI was exploited.
The hacker made a profit of $13 Million, including QI, wETH, USDC, SDT, MOCA, STACK, sdam3CRV, and MATIC.
Post attack, the attacker exchanged some of the tokens through 1inch.
EarnHub token has been hacked
EarnHub’s ENB staking liquidity pool was compromised due to a logic error in the smart contract.
The hacker stole most of the tokens in the pool and sold them, thus draining the pool’s liquidity.
The liquidity providers were requested to unstake their tokens.
The attacker made a total profit of $289.5k in 665.7 BNB.
EarnHub team released an event post mortem following the hack.
Sandbox smart contract contained a vulnerability
The Sandbox deployed a new
LAND
contract following a disclosed vulnerability on 25th December 2021.According to the official blog post released by The Sandbox team, the vulnerability did not allow the transfers nor the minting of new LAND.
Any malicious actor did not exploit the issue.
Cross-Chain Bridge Hack of Meter witnesses $4.4M loss
Meter.io, a high-performance blockchain infrastructure bridge, suffered an exploit.
The hacker exploited a vulnerability to call the underlying ERC20 deposit function to fake a BNB or ETH transfer and mint a large number of BNB and wETH tokens depleted the reserves.
The total loss in the hack is $4.4 Million in 391 ETH and 2.74 BTC.
A ransomware gang targets PayBito crypto exchange
PayBito, a crypto asset trading platform, fell victim to a ransomware gang.
They stole the crypto platform’s customer database consisting of personally identifiable information of about 100,000 customers, including weak passwords hashes.
The ransomware gang also claimed to access the admin panel login credentials.
KLAYswap, a South Korean DeFi project hacked for $1.83M
KLAYswap, a South Korean DeFi project, stated it was hacked for $1.83 Million.
The hacker modified a third-party Javascript link in the front-end website of the project, causing the user to download malicious malware while accessing the KLAYswap website.
This led the hacker to gain tokens when a user interacted with the web page's token-related function.
Four hundred seven suspicious transactions were found in 325 wallets in the hack.
The team later released a compensation plan along with an event post-mortem.
To the Numerophiles out there 🔢
Alibaba’s latest NFT launch features non-tradeable badges celebrating four Winter Olympics sports.
More From the Editor’s Desk
If you have just started exploring the cryptocurrency vertical, you should hold multiple things in this domain. One of those few things you must consider is “verifications.”
Besides the apparent reason for having unlimited access to all trading tools and having a more remarkable ability to withdraw, these verification measures intend to safeguard your asset from fraudsters and hackers.
Click below to get an insight on “How to Fix Binance Address Verification Failure”!
Word on the Block
Versus Series
Web 3.0 🆚 Metaverse
Catch out the Key differences between various significant terminologies in the Blockchain.
Stay updated with the latest happenings in the blockchain world; join our Discord community here.