current position:Home>Chuangyu Blockchain|July Security Monthly Report

Chuangyu Blockchain|July Security Monthly Report

2022-08-02 18:32:30Golden Finance Column

前言

In July, with the recovery of the currency price,Security incidents have also become more frequent,The attackers did too this month“火力全开”,Attack from all sides.据知道创宇区块链安全实验室 【被黑事件档案库】 数据显示:该月发生的安全事件超 43 起,Among them, the single losses caused by runaway scams and phishing are also becoming more and more serious,Represents the event as Uniswap V3 Phishing and DRAC Network 的 Rug Pull,而月初 DeFi 协议 Crema Finance The damage caused by the attack is particularly heavy.本月安全事件造成的损失总金额共计约 29,000,000 美元.

5nHrEn7DluUqW0RcS6VdgG2Keb388EciVbMDR1oD.jpeg

Through the analysis of the number and proportion of various types of security incidents this month,It is not difficult to find that phishing security incidents still account for the most.Again, remind everyone to be vigilant against phishing,There are tools to reduce the risk of being phished,如 :FishAlert  (https://fishalert.knownseclab.com)插件,Reduce the risk of being phished.

7kDxdUPyegHP5Jq6YFlThIcUvUDfWN4dSgWLA2s7.jpeg

Comparison of security incidents this month6Monthly numbers are down slightly,However, the overall situation is still in a period of high incidence of security incidents.再此提醒大家,Safety awareness should be continuously improved,Stay alert to security issues.

以下是 知道创宇区块链安全实验室 A summary of various types of safety information for July,并就其暴露出的问题进行探讨.

DeFi 安全类型事件

• 7 月 3 日,Solana 生态流动性协议 Crema Finance Lost in hacking 600 万美元,黑客使用 Solend Flash loans drain the pool of funds.

• 7 月 7 日,ProjectX 项目 PXT 代币价格下跌,Officials say the price drop was due to a hacking attack(漏洞利用)造成的.攻击者获利约 1.9 万美元.

• 7 月 10 日,去中心化 NFT 金融化协议 Omni X 遭到攻击,攻击者利用 ERC721 的重入了清算函数.损失超 100 万美元.

• 7 月 11 日,DeFi 平台 Parallel Finance 遭到重入攻击,导致了约 200 万美元的损失.

• 7 月 12 日,The staking mining project was hacked,The attacker exploits the contract updateBalance Additive overflow vulnerability in functions,Modify the pledge amount of the attacking account,The total profit is approx 11 万美元.

• 7 月 12 日,多链 NFT 协议 Citizen Finance 被攻击,CIFI The price of the coin has fallen more than 50%,244 枚 BNB 和 5.76 万枚 MATIC 被盗.

• 7 月 14 日,BNB Chain 上项目 SpaceGodzilla Attacked by hackers.Hackers borrow large sums of money through flash loans Pancake manipulating the trading pool SpaceGodzilla 的价格,Attack and profit 25,378.78 BUSD.

• 7 月 24 日,Web3 音乐流媒体服务平台 Audius 社区金库被利用,损失 1850 万枚 AUDIO Token,黑客将资金在 Uniswap 兑换为 705 枚 ETH,共获利约 11万美元.

• 7 月 25 日,LPC 项目遭受闪电贷攻击,由于 _transfer The ledger balance is not updated in the function,Instead, it goes directly to the original recipient balance recipientBalance modify the value,Causes the attacker's balance to increase.The attackers profit together 178 BNB,约为 45715 美元.

• 7 月 28 日,基于 Solana 的去中心化算法稳定币协议 Nirvana 遭到闪电贷攻击,其稳定币 NIRV 价格从 1 美元一度跌至 0.09 美元,最大跌幅超过 90%,The attackers profit together3,490,563.69 USDT,21,902.48 USDC 及 393,230.32 ANA 代币,价值约 357 万美元.

• 7 月 3 日,Solana 生态流动性协议 Crema Finance Lost in hacking 600 万美元,黑客使用 Solend Flash loans drain the pool of funds.

• 7 月 7 日,ProjectX 项目 PXT 代币价格下跌,Officials say the price drop was due to a hacking attack(漏洞利用)造成的.攻击者获利约 1.9 万美元.

• 7 月 10 日,去中心化 NFT 金融化协议 Omni X 遭到攻击,攻击者利用 ERC721 的重入了清算函数.损失超 100 万美元.

• 7 月 11 日,DeFi 平台 Parallel Finance 遭到重入攻击,导致了约 200 万美元的损失.

• 7 月 12 日,The staking mining project was hacked,The attacker exploits the contract updateBalance Additive overflow vulnerability in functions,Modify the pledge amount of the attacking account,The total profit is approx 11 万美元.

• 7 月 12 日,多链 NFT 协议 Citizen Finance 被攻击,CIFI The price of the coin has fallen more than 50%,244 枚 BNB 和 5.76 万枚 MATIC 被盗.

• 7 月 14 日,BNB Chain 上项目 SpaceGodzilla Attacked by hackers.Hackers borrow large sums of money through flash loans Pancake manipulating the trading pool SpaceGodzilla 的价格,Attack and profit 25,378.78 BUSD.

• 7 月 24 日,Web3 音乐流媒体服务平台 Audius 社区金库被利用,损失 1850 万枚 AUDIO Token,黑客将资金在 Uniswap 兑换为 705 枚 ETH,共获利约 11万美元.

• 7 月 25 日,LPC 项目遭受闪电贷攻击,由于 _transfer The ledger balance is not updated in the function,Instead, it goes directly to the original recipient balance recipientBalance modify the value,Causes the attacker's balance to increase.The attackers profit together 178 BNB,约为 45715 美元.

• 7 月 28 日,基于 Solana 的去中心化算法稳定币协议 Nirvana 遭到闪电贷攻击,其稳定币 NIRV 价格从 1 美元一度跌至 0.09 美元,最大跌幅超过 90%,The attackers profit together3,490,563.69 USDT,21,902.48 USDC 及 393,230.32 ANA 代币,价值约 357 万美元.

Bureau security type events

• 7 月 4 日,分布式节点基础设施项目 Nody(NODY) 发生 Rug Pull,当前 NODY Token 价格下跌 93%.

• 7 月 6 日,BNB Chain 项目 Baby DAO 发生 Rug Pull,代币下跌 99.9%,约 773 枚 BNB(约 18 万美元)被转移至 Tornado Cash.

• 7 月 20 日,RacKiller 发生 RugPull,The price of the coin has fallen over 70%.

• 7 月 20 日,NumberSwap 发生 RugPull,The price of the coin has fallen over 96%.

• 7 月 20 日,Neoteric.finance 发生 Rug Pull,其 NTRC The price of the coin has fallen over 91.6%.Current reports show losses of approx 10 万美元.

• 7 月 20 日,Angels To Miracles 项目发生 Rug Pull,ATM 代币价格下跌 46%,有 1943.3 枚 BNB 转移至 TornadoCash,损失约 53 万美元.

• 7 月 20 日,ORCHID 项目发生 Rug Pull,ORCHID The price of the coin has fallen over 96.4%,Current reports show losses of approx 5 万美元.

• 7 月 25 日,DeFi 项目 DRAC Network 发生 RugPull,代币 TEDDY 价格下跌 99.4%,1 万枚 BNB 和 200 万枚 BUSD Transfer to Binance.损失约为 450 万美元.

• 7 月 26 日,SKG 代币项目 Rug Pull,价格下跌超过 80%.超过 10 万枚 SKG 被出售,Asset profit exceeds 7 万美元.

• 7 月 27 日,Larp Finance 项目发生 Rug Pull,LARP The coin fell by more than 80%.The contract deployer sells the initial mint LARP Tokens and profit 2.8 万美元(20 个 ETH).

• 7 月 29 日,second uncle coin The second uncle coin pool occurred Rugpull,Contract deployer passed Tornado Cash Clean up stolen money,Tokens as of now SUC 价格已下跌 99.7%.据统计,本次诈骗事件的利润总额高达 130 万美元.

网络钓鱼安全类型事件

• 7 月 6 日,NFT 项目 Spiky Space Fish 的 Discord 服务器遭黑客攻击,请用户不要点击任何链接,且不要参与铸造或批准任何交易.

• 7 月 6 日,Otherside Official Twitter account(@scottehartley)疑似被盗,Its profile has been changed to display OthersideMeta NFT image and promote a scam.

• 7 月 9 日消息,NFT 项目 Dope Ape Club 的 Discord 服务器遭到攻击.Chat is locked,The attacker posted a phishing link.请社区Users don't click on the link、铸造或批准任何交易.

• 7 月 12 日,Hackers are using phishing attacks Uniswap V3 上窃取 7500 ETH,The protocol itself has no security issues.

• 7 月 14 日,NFT 项目 AzukiArt 的 Discord The server was hacked,Ask users not to click on the link、铸造或批准任何交易.

• 7 月 15 日,NFT 项目 Lonely Alien Space Club 的 Discord 服务器遭到入侵,Ask users not to click on the link、铸造或批准任何交易.

• 7 月 16 日,P2E 元宇宙项目 Botborgs 的 Discord 服务器遭到攻击,Ask users not to click on the link、铸造或批准任何交易.

• 7 月 17 日,NFT 管理平台 NFTY Dash 的 Discord 服务器和 Twitter 账号遭到攻击,Ask users not to click on the link、铸造或批准任何交易.

• 7 月 17 日,premint.xyz 遭到黑客攻击,黑客在 premint.xyz 网站中通过植入恶意的 JS 文件来实施钓鱼攻击,欺骗户签名 setApprovalForAll(address,bool) 的交易,从而盗取用户的NFT等资产.

• 7 月 18 日,originals-adidas.com Confirmed to be a phishing site,19 枚 ETH 和 17 枚 NFT 已进入诈骗者地址.

• 7 月 19 日,NFT 项目 Maximalist 的 Discord 服务器遭到攻击,攻击者发布了钓鱼链接,Ask users not to click on the link、铸造或批准任何交易.

• 7 月 20 日,DerpyPunkz 的 Discord 服务器遭到攻击,攻击者发布了钓鱼链接,与此前 Maximalist Project attackers are the same,Users don't click on the link、铸造或批准任何交易.

• 7 月 20 日,DerpyPunkz 的 Discord 服务器遭到攻击,攻击者发布了钓鱼链接,与此前 Maximalist Project attackers are the same,Users don't click on the link、铸造或批准任何交易.

• 7 月 21 日,NFT 项目 Tableland Discord 遭遇攻击,Post phishing links on the bulletin board,Some team members have been kicked out.Ask users not to click on the link、铸造或批准任何交易.

• 7 月 25 日,NFT 项目 NEN Studio 的 Discord 服务器遭受攻击.请社区Users don't click on the link、铸造以及批准任何交易.

• 7 月 27 日,NFT 项目 The Americans NFT 的 Discord 服务器遭到攻击,攻击者发布了钓鱼链接.请社区用户不要点击、铸造或批准任何交易.

• 7 月 29 日,NFT 项目 Old Sport 的 Discord 服务器遭到攻击.请社区用户不要点击、铸造或批准任何交易.

• 7 月 29 日,ApachesNFT 项目 Discord 服务器遭到攻击.请社区用户不要点击、铸造或批准任何交易.

• 7 月 29 日,DAISUKI 项目 Discord 服务器遭到攻击.请社区用户不要点击、铸造或批准任何交易.

其他安全事件类型

• 7 月 4 日,The official Twitter account of the British Army and YouTube 帐户遭到黑客攻击,And published about cryptocurrencies and NFT 的帖子.

• 7 月 4 日,Multi-user encrypted wallet MetaMask 的 POAP 被盗,It is recommended to remind users before revoking with NFT 市场 Eporio 交互的所有 POAP 批准.

• 7 月 26 日,Windows 版 Coremail 邮件客户端存在 RCE(远程代码执行)漏洞,An attacker can take control of a user's host by sending an email containing a malicious program to the user,It may lead to the leakage of the wallet private key.

总结

从 Defi 安全形势来看,Flash loan attacks and reentrancy attacks are more common in security incidents this month,Logic loopholes are also frequent,The project party should take precautions against such attacks in advance.特别是 Crema Finance Security incidents remind us that attackers can perform fancy attacks through flash loans,Therefore, the project party must think carefully about the safety of flash loans.知道创宇区块链安全实验室 在此提醒,对合约安全有必要做到常规审计和复合审计,保障合约免受其他攻击影响,同时高度重视授权问题,对于授权要有明确的时间限制.

From the point of view of phishing and scam running,The losses caused by phishing and scammers are also increasing month by month,On the one hand, the number has increased,On the other hand, the amount of loss caused by a single event also increased,Therefore, users should learn more about blockchain knowledge and anti-fraud awareness in addition to investing,Make sure your assets don't go missing.

copyright notice
author[Golden Finance Column],Please bring the original link to reprint, thank you.
https://en.netfreeman.com/2022/214/202208021558561139.html

Random recommended