Security in WEB3 - Issue 9 : 01-August-2022
Weekly roundup on News, Security, Developer, Research and resources in WEB3
Hey Everyone!
Welcome to my ninth issue on Security in WEB3.
If this is the first time you have visited this newsletter please consider subscribing if you like to read any of the following.
**The total amount of loss shown are approximations and cannot guarantee that those are actual numbers/losses incurred to people/protocol or profit made by the exploiter.**
Hacks🤫
Solana DeFi Protocol Nirvana loses $3.5M to flash loan exploit
$LPC Flashloan attack ~$45K
Scams😩
Titanium Blockchain CEO pleads guilty to $21 million crypto fundraising scam
Opensea implemented a new GIFT feature and it's being exploited
RugPulls😨
A contract is suspected to have rugged, with a stolen amount of $91,589
An unknown project (not open-source) was rugged and two users suffered asset losses of about $90K
News 📰
KuCoin announces “Anti-FUD Fund” to track down and sue critics/FUDers
42% of failed crypto exchanges completely vanished - Report by coinjournal
Chainalysis Courts US Government With New 'Solutions' Subsidiary
The Chainalysis 2022 State of Cryptocurrency Investigations Survey
Regulatoins®️
U.S. regulators order Voyager Digital to stop 'false and misleading' deposit insurance claims
Brazilian authorities challenged NFT company Nemus after it claimed ownership of land in the Amazon, allegedly pressuring Indigenous people to sign documents they could not read.
EU Banking Regulator Worries It Can’t Find the Staff to Regulate Crypto
Uncertainties🙆♂️
Troubled Crypto Lender Babel Lost Big While Trading Client Funds
Helium says Lime and Salesforce use its crypto mesh network — it isn’t
Crypto exchange Zipmex files for bankruptcy protection in Singapore
US Treasury is investigating Kraken for alleged Iran sanctions violations
Binance CEO Sues Bloomberg’s Hong Kong Partner for Defamation
Discord Compromises💩
30-July-2022:
29-July-2022:
28-July-2022 :
27-July-2022:
Developer resources💻
How To Use Foundry To PoC Bug Leads - Part1, Part2 by @cergyk1337
Moonbeam Missing Call Check - A responsible disclosure by @PwningEth received $1M
Huff released includes a compiler, Foundry library, project template, VSCode extension, and contract library (Huffmate)
EVM-translator: an open-source library to interpret EVM transactions by @BrennerSpear
eth.limo supports on-demand ENS subdomain certificates by @eth_limo
Weekly Spotlight :
“@cmichelio“ - blockchain dev & security 🛡️ #1 @code4rena