Inventory From Beosin | There Are Over 19 Typical Security Incidents In June. The Security Situation Of Blockchain Is Still Grim, And There Is a Significant Increase In Terms Of Ransomware/ Trojan Of Mining.
According to the data monitoring of Beosin-Eagle Eye, the security situation of Blockchain is still grim in June, and over 19 typical security incidents have occurred in the entire Blockchain ecosystem. Among them, in terms of Ransomware/ Trojan of Mining, the security incidents that occurred have shown an upward trend compared to the last month, and which needs to be paid great attention to. Security personnel of Beosin counted there are over 19 typical security incidents in June.
In terms of Exchange, there are 2 typical security incidents occurred in total:
01
The service of domain name registration of Bitbank, the Japanese crypto exchange, was illegally accessed, but it did not affect the information and assets of users.
02
The 2 liquidity pools on Balancer were attacked by Lightning Loan. The 2 token pools that suffered losses were STA and STONK. At present (June 29), the liquidity of the 2 token pools has already been exhausted, and the losses have reached $500,000.
In terms of Crypto Frauds/ Crypto Scams, there are 2 typical security incidents occurred in total:
01
On June 11, a user revealed that the Bermuda Exchange, which was ranked in the top 129 of Feixiaohao, was suspected of embezzling a large amount of users’ funds and having absconded with funds. After verification, due to a large number of users’ complaints, Feixiaohao have officially removed off the Bermuda Exchange, and the port of APP/PC of the exchange cannot log in.
02
The Ontario Securities and Exchange Commission referred to it as the Ponzi Scheme in the post-analysis report on the QuadrigaCX Exchange’s bankruptcy of Canada in 2019. The QuadrigaCX Exchange was once the largest exchange of Canada until its founder died, exposing a financial loophole of $215 million; however, Cotten counterfeiting the trading volume on its platform was as high as $115 million.
In terms of Ransomware/ Trojan of Mining, there are 7 typical security incidents occurred in total:
01
KCS, the company in the Kent County, UK, was attacked by ransomware. The hackers demanded a ransom of 800,000 pounds, otherwise the data of the company would be leaked on the dark web. KCS indicated that they did not pay the ransom, and the personal data relating to taxpayers did not be stolen, either.
02
Gandeloft, user of Reddit, said on June 2 that there was a problem with the transaction of P2P Bitcoin on the HodlHodl platform. The scammer used SIM spoofing attack to steal Bitcoin. Although the user did not see the money on Revolut, the scammer successfully pressed the victim to release Bitcoin from the third-party escrow.
03
NetWalker, the ransomware, attacked 3 American universities and stole the sensitive data from these universities, including student names, social security numbers, and financial information. NetWalker threatened these universities to pay Bitcoin as the ransom. If they did not pay, NetWalker would leak the data within a week.
04
Sophos, the British cybersecurity company, pointed out that the hackers behind the Kingminer Botnet attacked the SQL server database of Microsoft from June 8 to 12 in the latest report, and they installed the crypto mining program XMRig to mine Monero (XMR).
05
Lion, the Australian beverage giant, suffered 2 ransomware attacks in less than a week. It is claimed that Lion was attacked by ransomware to damage its IT infrastructure. REvil, the ransomware organization, initially requested a ransom of $800,000 in Monero; if Lion failed to remit the ransom before June 19, they would double the ransom to $1.6 million.
06
Hackers used malicious Docker images to hide cryptocurrency mining code to mine Monero (XMR).
07
Researchers at Unit 42, the security company, have discovered a new malware Lucifer, which was a variant of certain old cryptocurrency ransomware. The new variant can be used for malicious cryptocurrency mining and DDoS attack.
Comments of Beosin:
In terms of Ransomware/ Trojan of Mining, it have always been a pain point that is easily overlooked by enterprises and users. As enterprises and users, should enhance the security awareness in the daily work and life. When facing the emails and software with unknown links or sources, should be cautious to reduce the occurrence of the security incidents.
In terms of Dark Web, there are 4 typical security incidents occurred in total:
01
A man in Anhui used Bitcoin to sell citizen information on the dark web and was found guilty of infringing on citizens’ personal information. He was sentenced to 3 years in prison and fined him ¥30,000. He sold the personal information about citizens holding ID cards on the dark web and the cumulative quantity was up to over 200,000 pieces.
02
REvil, the hacker group, has launched the auction information on the dark web of the sensitive data stolen from 2 US law firms, Fraser Wheeler & Courtney and Vierra Magen Marcus. The auction information included customer information, internal company documents, electronic letters, patent agreements, business plans & projects, and new technologies that have not yet been patented.
03
The Leicester Criminal Court of the UK ordered the seizure of over 1.8 million pounds (about 2.29 million US dollars) from an Englishman who operated a multi-billion pound crypto-drug empire in his attic, and he used Bitcoin for illegal transactions on the dark web.
04
On June 26, Aleksei Burkov, the Russian hacker, was sentenced to 9 years in prison by the US court. Aleksei Burkov was accused of operating a dark web called Cardplanet, which sold credit card information for citizens of multiple countries.
In terms of Others, there are 4 typical security incidents occurred in total:
01
On June 2, when the price of Bitcoin rose, hackers transferred $800,000 BTC that was stolen from Bitfinex in 2016.
02
Privnote, the site of hackers cloning the encrypted messages, induced users to click on the fake sites through phishing. The fake sites did not encrypt messages, but can read and modify all messages sent by users to steal Bitcoin.
03
Bancor, the protocol of the decentralized exchange, was exposed to a serious vulnerability. Since then, Bancor and several white-hat hackers have used the vulnerability to transfer user funds to a new address. As of June 18, the funds involved have exceeded $500,000.
04
Lazarus, the hacker group of North Korean, may launch attack to phishing sites of multiple countries. The organization had stolen $517 million of cryptocurrencies. Cyfirma predicted that the attack may be carried out on June 19 for a period of 2 days, which would affect not only citizens of multiple countries, but also small & medium-sized enterprises and even large enterprises.
In view of the current new situation in the field of Blockchain security, Beosin hereby summarizes:
In general, the number of Blockchain security incidents in June has increased compared with May. The overall number of security incidents is at a Medium level, and the degree of damage is rated as Intermediate by Beosin. Therefore the security situation of Blockchain is still grim and needs to be paid great attention to. Among them, in terms of Ransomware/Trojan of Mining and Dark Web, the number of security incidents has increased significantly and cannot be ignored.
Thus, Beosin recommends that users must keep eyes open when choosing exchanges, do not blindly believe in the so-called “big companies”, and need to be cautious when operating funds to protect own assets safe.
In view of the significant increase of Ransomware/Trojan of Mining’s security incidents in June, Beosin hereby specially reminds enterprises and users the following precautions: strengthen security protection in daily work and do not take it lightly; enhance the security awareness of employees and do not trust or download links or files from unknown sources, carefully verify when performing sensitive operations. If have already been extorted, must seek help from a professional security company.
