In August, the number of security incidents in the blockchain field is currently the largest in a single month in 2020. Compared with July, the security incidents in all sectors are on the rise.
Original title: “Inventory | Chengdu Lian’an: More than “39” typical security incidents occurred in August. There are frequent security incidents this month, and the overall risk rating is “high”, which needs to ring the alarm”
Written by: Chengdu Lian’an
According to the data monitoring of Chengdu Chain’s “Security Situation Awareness System” (Beosin-Eagle Eye) , in the past August, the security situation faced by the entire blockchain ecosystem is very severe . Incomplete statistics. A total of 39 incidents have occurred. More typical security incidents are currently the highest in a single month in 2020.
The overall risk rating of this month’s security incidents is “high” , which requires the attention of all project parties in the blockchain ecosystem to prevent failure. Compared with July, the security incidents in all sectors in August showed an upward trend . According to the statistics of Chengdu Lian’an security personnel, the breakdown of typical security incidents in August is as follows:
A total of “4” typical security incidents occurred on the exchange side
Sperax , a decentralized financial infrastructure, said that some exchanges recently issued announcements to guide users to enter their platforms to snap up SPA tokens. Sperax does not currently have any official cooperation with any transaction, and Sperax stated on August 14 East Coast time that it will not distribute SPA tokens before the official website public sale.
KuCoin , a cryptocurrency exchange, warned that fraudulent websites use its brand to try to steal cryptocurrencies . The website provides false rewards to induce users to deposit digital assets.
The Japanese cryptocurrency exchange TAOTAO officially stated that at 12: 46-12 :56 on August 22, Tokyo time, the exchange’s trading pair quotation could not be updated due to a system failure. This problem has been fixed. The impact of the failure is still under investigation.
Some cybercriminals have been counterfeiting the BTC ERA trading platform with the intention of infecting potential users with malware. The cybersecurity company discovered that the perpetrators had been sending emails allegedly from BTC ERA to induce users to invest and pay.
There were “5” typical security incidents in DeFi
Opyn officially issued an update on the ETH theft incident caused by platform loopholes and will fully compensate ETH put option sellers affected by the loophole. For buyers of ETH put options, the put options are redeemed at a price 20% higher than the market price.
The DeFi liquidity farming anonymous project BASED officially announced that it will redeploy the pledge pool. The official Twitter said that a hacker tried to freeze “Pool1” permanently, but the attempt failed.
In the contract developed hastily by Yam Finance , a loophole in the rebase function caused the governance contract to be “permanently destroyed”, and Curve tokens worth $750,000 were locked and unusable.
The DZI officially supported by TRON broke a loophole, and engineers directly called the contract to obtain DZI after it was officially launched, and suffered heavy losses.
Push unique friends broke the news, DeFi liquidity mining project Degen.Money use dual licensing loopholes (Double Approval Exploit) to obtain the user money. YFI founder Andre Cronje also said on Twitter that the project is indeed risky and requires manual cancellation of authorization.
Beosin comment: DeFi projects are still a hot trend at the current stage. After many projects went online, serious security vulnerabilities were exposed. Chengdu Lianan recommends: Before the project goes online, all major project parties must do a good job in safety audits to eradicate potential safety hazards, thereby reducing unnecessary losses.
“8” typical security incidents occurred in the area of fraud/encryption scams
The Peterborough County Police Detachment in Ontario, Canada is investigating two fraud incidents involving a total of 78,000 US dollars . The suspect pretended to be a police officer to trick the victim into depositing funds in the bitcoin account he requested, or he would be arrested.
According to Jon Prosser August 5 issued a tweet, which has 262,000 subscribers YouTube channel was hacked, the channel name is changed to “NASA [news],” and begin to live on SpaceX CEO Andy Herron Martin Skr gave false news of Bitcoin. In about two hours, the illegal profit was $4,000 .
Since the beginning of this year, the same type of encryption scam has been rampant on Instagram . More than 1.3 million Instagram posts use the hashtag #Coinbase , but most of them are false information; there are also frauds that fake celebrity accounts to post false encrypted information.
On August 7, Uniswap had counterfeit SRM currency , and users were deceived. Serum issued a tweet to remind users to be vigilant. SRMs appearing on trading platforms (such as Uniswap, etc.) other than FTX and BitMax platforms are all counterfeit.
The ScamAlert website is tracking some addresses suspected of encryption scams. The number of confirmed and suspicious digital currency addresses has exceeded 50,000 .
The National Cyber Security Center (NCSC) in the United Kingdom has deleted more than 300,000 URLs for celebrity-related false endorsement investment opportunities, and more than half of the websites are deceptive cryptocurrency investment plans.
The Suzhou Park Police detected the first hacking crime against virtual currency in Suzhou, and arrested a number of criminal suspects who used hacker methods to steal account passwords to steal virtual currency, and contacted professional money laundering gangs to realize cash through the dark web.
The CFTC requested a civil fine of US$429 million on the head of Control-Finance, a crypto scam.
“8” typical security incidents occurred in the area of ransomware/mining Trojans
CWT, the fifth largest travel company in the United States, agreed to pay $ 4.5 million worth of bitcoin to hackers who hijacked its computer systems.
According to foreign media reports, the FBI has issued a new security alert against Netwalker ransomware attacks by US and foreign government organizations. Subsequently, the federal government advised the victims not to pay the ransom and reported the incident to the local FBI field office.
The Weibu Intelligence Bureau detected an attempt to attack the Docker host and planted a mining Trojan. The mining Trojan was stored on a server (85.214.149.236) in Germany.
The multinational company Canon ‘s email, storage services and its US website were attacked by ransomware from the Maze group . Maze requires Canon to pay a cryptocurrency ransom, otherwise its photos and data will be leaked.
The ransomware attack on Garmin was not over, and Canon suffered another ransomware attack. In addition to downing some of Canon’s websites, the attack is said to have caused up to 10TB of data in Canon’s servers to be stolen.
The ransomware criminal group REvil claims to have successfully attacked Brown-Forman Corp, the US wine and spirits giant. The company refused to pay the Monero ransom demanded by REvil. In response, the hacker sold the stolen data on its official dark web blog for approximately $1.5 million .
Israeli cyber security company Mitiga advises all customers of Amazon Web Services (Amazon Web Services) running certain programs to check whether they have been maliciously infected by Monero mining software . Migita claims that any user running an EC2 instance based on Community AMIs (Amazon Machine Images) is vulnerable to the encryption mining software.
A criminal group launched a DDoS attack on some of the world’s largest financial service providers (including MoneyGram, YesBank Indiak, PayPal, Braintree, and Venmo) and demanded bitcoin ransoms.
“2” more typical security incidents occurred on the dark web
Passport data of 1.14 million Russians are being sold in underground shops on the dark web. It is reported that in the previous referendum on constitutional reform, these Russian citizens voted through the blockchain platform, but their data was leaked on the Internet.
Empire Market, a well-known dark web market, has closed operations. When it exited, the website defrauded 1.3 million users of approximately 2638 bitcoins, worth nearly 30 million U.S. dollars .
“12” more typical security incidents occurred in other areas
The cryptocurrency wallet Ledger wrote an article in response to the security vulnerabilities disclosed by the security researcher Monokh. Ledger stated that it has released version 1.4.6 of the Bitcoin application, which aims to improve the security vulnerabilities disclosed by Monokh. In addition, Ledger has also updated applications such as Litecoin and Dogecoin.
The recent 51% attack on ETC is believed to have resulted in approximately $5.6 million in cryptocurrency being “double spent” .
The social news website Reddit suffered a large-scale hacking attack. The attackers destroyed Reddit including dozens of channels including the National Football League, TV shows, The Pirate Bay, Disneyland, Avengers, etc. These channels add up to tens of millions of users. To show support for Donald Trump’s re-election.
Tencent Security Threat Intelligence Center has detected a large number of attacks originating from overseas IP and some domestic IP against domestic cloud server tenants. The cloud servers of many well-known domestic companies have been attacked by this botnet, and thousands of servers have been compromised.
The judge sentenced the Australian hacker Kathryn Nguyen sentence of 2 years and 3 months, because she XRP close to its all-time high of $ 3.29, when in January 2018, theft of more than 100,000 XRP tokens (currently worth about $ 300,000) .
This year hackers have had a significant impact on the privacy browser Tor , and they are using this influence to hijack Bitcoin. Through the Tor export relay, the hacker transfers the bitcoin funds in the encrypted transaction to his own hands.
Two men in the Bulgarian town of Kyustendil were detained for stealing electricity and mining bitcoin. The stolen electricity was worth 1.5 million US dollars .
The US government is suing the US National Security Agency (NSA) leaker Edward Snowden . According to a recent court document, Snowden’s lecture fees at virtual conferences amounted to $1.2 million , of which at least $35,000 came from Bitcoin and crypto companies.
On August 21st, Joseph Sullivan , the former chief security officer of Uber, tried to cover up the 2016 hacker attack. Two hackers hacked the data of millions of users and drivers and demanded that he pay six-figure payments. In December 2016, Sullivan paid hackers $100,000 in Bitcoin.
On August 24, hackers stole data of more than 1,000 users from CryptoTrader.Tax . CryptoTrader.Tax is an online service for calculating and filing cryptocurrency transaction taxes.
The North Korean hacker organization Lazarus once again set its sights on cryptocurrencies. The latest attack was to send a phishing document through a job advertisement on LinkedIn , which is related to a blockchain technology company.
A study showed that tokens worth more than $ 1 billion on the Ethereum blockchain lacked a software standard released in 2017 that allowed them to be hijacked and taken from trading exchanges.
In view of the current new situation in the field of blockchain security, “Chengdu Lianan” summarizes here:
On the whole, there were a lot of security incidents in the entire ecosystem of the blockchain in August, which showed an obvious upward trend compared with July. It is worth mentioning that the security incidents that occurred in August are currently the largest number in a single month in 2020 , and the overall risk rating is “high” . Among them, security incidents in DeFi are particularly worthy of our attention. As the popularity of DeFi continues to rise , the subsequent hidden security risks in this sector may be great, and we cannot relax our vigilance .
At the same time, there have been several serious security vulnerabilities in DeFi related projects this month. Therefore, Chengdu Lianan also reminds the majority of project parties to do relevant security work during the project preparation stage. For contracts that are about to go online, remember to find a professional security company to conduct code audits to avoid irreparable losses after going online.
In addition, it should be noted that in terms of fraud/encryption scams , related scam incidents that occurred this month have also occurred from time to time; at the same time, we can also see that the relevant departments are paying more attention to this section, and the cracked Scam incidents have also increased. Here, Chengdu Lian’an needs to remind users not to believe in “ pies falling from the sky” ; to discern relevant news on the Internet carefully and not to fall into the trap .
Source link: mp.weixin.qq.com
