Security in WEB3 - Issue 7 : 18-July-2022
Weekly roundup on Security, Developer, Research and resources in WEB3
Hey Everyone!
Welcome to my seventh issue on Security in WEB3.
If this is the first time you are visiting this newsletter please consider subscribing if you like to read any of the following.
**The total amount of loss shown are approximations and cannot guarantee that those are actual numbers/losses incurred to people/protocol or profit made by the exploiter.**
Hacks🤫
PREMINT NFT tool hacked, and the user wallets are drained for ~284.35 ETH
Hacker Targets NFT Artist DeeKay’s Twitter, Wipes NFTs Worth ~$150K
Citizen Finance claims to have been hacked for ~$90K
More than ~$8.1M was stolen in a phishing attack targeting uniswap users
Scams😩
The theft of Green’s NFTs was part of a sophisticated multimillion-dollar scam operation that has roped in numerous victims - a thread by @zachxbt
$3.1m rug pull of @BONEHEADS - a thread by @zachxbt
Upcoming NFT scams thread by @cryptoShields
RugPulls:-
@ArenaPlayAPC could be a soft rugpull
News 📰
Crypto Mixers Usage Reaches All-time Highs in 2022 - Report by @chainalysis
Global crypto ranking - US and Germany share the top spot by @Coincub_
Interview - MetaMask Co-Founders: ‘We Can’t Stop People From Making Ponzis on Blockchains’
Celo network ~24-hour outage, It was the first time the Celo mainnet had gone down in more than two years.
Helium network team resolves consensus error after a 4-hour outage
BNB Chain launches DApp platform with 'Red Alarm' to warn users about scams - https://dappbay.bnbchain.org/
SEC Fines John McAfee’s ICO Partner, Issues Lifetime Ban for ICO and Pump and Dump Scams
Tencent shuts down NFT platform as gov policy makes it impossible to thrive
Circle Claims USDC Stablecoin Is Now Fully Backed by Cash, US Treasuries
Ethereum's Merge event has a new launch date after network developers laid out a fresh timeline for testnets and updates
A U.K. court has ruled that individuals and entities can now be served legal documents via NFTs
Polygon Among Six other Web3 Projects Selected for Disney Accelerator
Ethereum Scaling Solution StarkNet Announces Token Launch for September
Uncertainties🙆♂️
On June 16th AEX change paused their withdrawals amid the crypto downturn and now on July 17th they announced the suspension of services
Coinbase plans to shut down its affiliate-marketing program, sparking rumors of insolvency
Discord Compromises💩
17-July-2022:
16-July-2022:
15-July-2022 :
14-July-2022:
13-July-2022 :
12-July-2022
11-July-2022 :
Developer resources💻
different types of reentrancy attacks, focusing on multi-contract reentrancy attacks by @pcaversaccio
A powerful and open-source toolkit for hackers by @wester0x01
Paradigm CTF is open for registration - https://ctf.paradigm.xyz/
EIP-5000 opcode `muldiv` by @_hrkrshnn, @alexberegszaszi, @chfast
Consider following @0xViking and @securityinweb3
Weekly Spotlight :
This is a section where every week I will highlight one must-follow Twitter account.
“@Mudit__Gupta“ - CISO @0xPolygon | Tech Partner @Deltabc_fund | Security Researcher