Blockchain Threat Intelligence

Share this post
BlockThreat - Week 3, 2022
newsletter.blockthreat.io

BlockThreat - Week 3, 2022

Crypto.com | Crosswise | Multichain

Peter Kacherginsky
Feb 9
Comment
Share

Blocksec industry continues showing signs of maturity with the launch of DeFi Safety and NFT Security Group organizations to help promote security. Crypto.com suffered an MFA bypass which allowed for multiple account takeovers. Cross-chain protocols continue reporting multi-million losses with billions locked in their contracts. A really neat deanonymization trick was reported using NFTs and common wallet software.

News

  • Chinese Police Arrest 8 People Related to $7.8M Rug Pull.

  • DeFiSafety launched a V2 version of the website featuring security scores for various projects.

  • OpenSea launched NFT Security Group with a number of industry participants.

Scams

  • Akamai published a detailed report on the recent Amazon crypto scam.

  • Solana NFT Project Rug Pulls Investors for $1.3M—Despite Civic 'Verification'.

  • Reports of multiple Youtube accounts compromised to promote a scam.

Hacks

  • On January 17, 2022 Crypto.com reported a loss $26M as a result of a flaw in its 2FA system coupled with user account takeovers.

  • On January 17, 2022 Crosswise Finance lost $879K after an unprotected privileged function was used to completely take over the contract.

  • On January 18, 2022 Multichain (aka Anyswap), a cross-chain bridge protocol, lost $3M as a result of insufficient checks in its token swapping function.

Malware

  • Meet the Malware Families Helping Hackers Steal and Mine Millions in Cryptocurrency by Chainalysis.

  • New BHUNT malware targets your crypto wallets and passwords.

Research

  • Critical privacy vulnerability — getting exposed by MetaMask explores user deanonymization using specially crafted NFT tokens.

  • Front-running attack in DeFi applications – how to deal with it? by Jacob Zmyslowski

  • Interesting Smart Contract Honeypot Analysis (PART 2) by Knownsec.

  • Insecura my consensus for the pyrmont network describes a long range attack against Pyrmont, an ETH2 testnet.

  • Principal Freezing and Ransom Attacks with MasterChefV2 by onewayfunction.

  • Under-constrained computation, a new kind of bug by Joran Honig.

  • Dune Analytics tutorial series great for on-chain investigators.

  • Frontrunning Post EIP-3074 by Ghili.

  • Attack of the Clones: Measuring the Maintainability, Originality and Security of Bitcoin 'Forks' in the Wild.

Media

  • Streetside Session Ep. 3 - Tracking ransomware developers blockchain activity.

Tools

  • c4udit is a static analyzer for solidity contracts based on regular expressions specifically crafted for Code4Rena contests.

  • r2cdev has beta Solidity support for all of your static analysis needs.

Premium Content

Indicators

This post is for paid subscribers

Already a paid subscriber? Sign in
© 2022 Peter Kacherginsky
Privacy ∙ Terms ∙ Collection notice
Publish on Substack Get the app
Substack is the home for great writing