On December 3 and 4, two critical vulnerability reports were submitted to Polygon by two white hat hackers. Analysis by BEOSIN’s security team has shown that the vulnerability is located in the Genesis MRC20 contract on Polygon. The vulnerability is due to an unchecked caller balance in the transferWithSig function…

BEOSIN: Summary of Token-level Security Issues Token-level security issues cannot be ignored in blockchain security. …

The attackers exploited the vulnerabilities in Visor Finance via a malicious contract, and forged a transaction to deposit 200 million tokens into Visor Finance’s stake mining contract (0xc9f27a50f82571c1c8423a42970613b8dbda14ef), thereby acquiring 195,249,950 vVISR stake certificates. The 8,812,958 VISR were then withdrawn from the stake mining contract using the stake certificates. The…

On November 30, BEOSIN Eagle-Eye detected that MonoX, an automatic market maker protocol, suffered a flash loan attack with a loss about USD 31 million. Regarding this attack, the BEOSIN technical team immediately conducted an incident analysis. After the attack, MonoX confirmed on its official Twitter that its contract was…

It’s time for another monthly security inventory! Beosin Eagle-Eye shows that in December 2021, various security incidents still occur from time to time. According to BEOSIN’s statistics, more than ‘22’ typical security incidents in occurred November. On the whole, the number of blockchain security incidents in November is not much…

What are the security issues that cannot be ignored in the “metaverse”? (1) Cyber-attack Cyber attacks are a major threat to the digital ecology, and the metaverse is not immune to this hazard. …

It’s time for another monthly security inventory! Beosin Eagle-Eye shows that in October 2021, various security incidents still occur from time to time. According to BEOSIN’s statistics, more than ‘20’ typical security incidents in occurred October. From a general point of view, the blockchain security incidents in October decreased slightly…

On October 27, BEOSIN’s Security Situational Awareness Platform revealed that the DeFi lending protocol Cream Finance was attacked again with a loss of $130 million. The stolen funds were mainly CreamLP tokens and other ERC-20 tokens. Regarding this attack, BEOSIN’s security technical team conducted incident analysis immediately. #1 Event overview …