The blockchain and cryptocurrency domain continues to battle against a variety of security threats, as elucidated in the SlowMist Weekly Security Report for the period October 1 — October 7, 2023. The report sheds light on ten distinct security incidents impacting entities across the spectrum, from individual token ventures to large-scale platforms, underlining the financial toll exerted by these attacks.
Statistical Overview
Total Security Incidents: 10
Noteworthy Trend: A surge in DNS Hijacking Attacks and Discord compromises.
Severe Impact: Stars Arena bearing the brunt with a loss approximating $3,000,000.
Incident Breakdown
1. Galxe (2023-10-06): A case of unauthorized access via DNS hijacking led to the misappropriation of visitors' funds, affecting 1,120 users, with a financial fallout of around $270,000.
2. MCT (2023-10-06): DNS domain hijacking unfolded, enabling the potential upload of private keys to a fraudulent domain. Though the loss remains undisclosed, precautionary actions were advised.
3. Fake CommEx token (2023-10-06): An orchestrated liquidity withdrawal in a rug pull scenario saw the deployer walking away with approximately $154,000.
4. Friend.tech (2023-10-05): Four users were subjected to SIM card swap attacks, resulting in a collective loss nearing $385,000.
5. Stars Arena (2023-10-05): A glaring security breach within the platform's smart contract framework led to a heist of about $3,000,000.
6. DePay (2023-10-05): The platform endured a flash loan attack, albeit with a relatively minor loss of $827.
7. Metropolis World (2023-10-05): The compromise of the platform's Discord server was reported, though the loss hasn't been quantified.
8. GEMIE (2023-10-02): A hack on the Discord
Read more on blockchain.news