Inventory From Beosin | There Were Over 19 Typical Security Incidents In July. Considerable Vulnerabilities Of Exchanges Were Exposed , And Code Auditing & Security Testing Needed To Be Done Well
According to the data monitoring of Beosin-Eagle Eye, the security situation of Blockchain is still grim in July, and over 19 typical security incidents have occurred in the entire Blockchain ecosystem. Among them, considerable vulnerabilities of exchanges are exposed in this month; in terms of Ransomware/ Trojan of Mining, there are still multiple security incidents, and we cannot relax our vigilance. Security personnel of Beosin counted the items of typical security incidents in July as follows:
In terms of Exchange, there is 1 typical security incident occurred in total:
Cashaa, the British cryptocurrency exchange, stated that hackers stole more than 336 BTC from one of the wallets. Subsequently, the exchange has stopped all crypto-related transactions.
In terms of Crypto Frauds/ Crypto Scams, there are 2 typical security incidents occurred in total:
On July 16, multiple Twitter accounts including Bill Gates, Obama, Elon Musk, Apple’s official account, etc. were attacked by hackers and posted Bitcoin phishing messages. After checking the address left by hackers on Twitter, it was found that the address has received 12.86 BTC.
CharryIslive, the second channel of India’s top YouTuber Carry Minati whose real name is Ajey Nagar, was hacked and conducted Bitcoin scams.
Comments of Beosin:
The hack of celebrity accounts on Twitter is a major security incident that occurred in this month. Beosin hereby reminds all users to pay attention to accounts security, do not use weak passwords, and do not choose to remember passwords on unfamiliar devices. When entering the websites, please remember to check the domain name of the websites and do not log in to illegal phishing websites in order to avoid causing losses.
In terms of Ransomware/ Trojan of Mining, there are 5 typical security incidents occurred in total:
On June 30, a California medical university was attacked by hackers in early June according to Decrypt, and the researchers were unable to access encrypted data on the Internet. The university has already transferred 116.4 BTC to hackers’ wallet in exchange for the tool to unlock encrypted data and required hackers to return the data they obtained.
The Tencent Security Threat Intelligence Center has detected that a large number of domestic companies have already encountered Outlaw Botnet attack. The Outlaw Botnet has infected about 20,000 Linux servers in China, affecting tens of thousands of companies. Attacking the target system through SSH blasting is the main feature of the Outlaw Botnet, and it also spread Perl-based Shellbot and Monero Trojan of mining at the same time.
The damaged database in the attack accounted for almost 47% of all MongoDB databases. Hackers required to pay 0.015 BTC (approximately $140) for each database, so the total amount requested was more than $3.2 million.
The UK National Cyber Security Center stated that hackers launched an attack on a sports companies recently, demanding to pay the ransom of 400 BTC .
The hackers asked Garmin to pay the ransom of $10 million to restore the Garmin System. The internal staff of Garmin confirmed that Garmin was attacked by a ransomware called WastedLocke. And this is a new type of ransomware, operated by Evil Corp, which is the development team for malware.
In terms of Dark Web, there are 3 typical security incidents occurred in total:
On July 13, William Burgamy, a drug dealer on dark web, and Hyrum Wilson, the Nebraska pharmacist, were accused of attempting to bomb their competitors. Both have pleaded guilty to the charge of US Federal .
Two 17-year-old Italian teens were arrested for paying BTC on dark web to watch live videos related to child sexual abuse, torture and murder.
According to the report, nearly 280,000 Instacart accounts were sold on dark web. Instacart provided customers with grocery delivery service through APP. The illegally sold data included customer names, credit card numbers, order history, etc.
In terms of Others, there are 8 typical security incidents occurred in total:
On July 3, CryptoScope team discovered a loophole in Ravencoin (RVN) Blockchain, and an emergency update was issued after the confirmation by the chief development team of RVN . It was reported that the loophole can generate additional RVN, but it would not affect or control existing RVN assets.
On July 2, hackers suspected of hacking into the official Twitter account of the Russian Ministry of Foreign Affairs. The hackers posted and sold a stolen Payment Database through this account, asking for the price of 66 BTC. The database purportedly contained the payment details of visitors to the public service portal of the Russian Federation in June 2020.
The Crisis Management Center of the Russian Ministry of Foreign Affairs has recently become the target of the type of hack. It was reported that the center’s Twitter account was recently attacked by an unnamed organization.
A hacker group called “Keeper” established an interconnected network to steal credit card data from more than 570 e-commerce websites. Since 2017, the group has obtained more than $7 million in cryptocurrency by selling credit card information on dark web.
On July 10, according to the foreign media reports, US prosecutors have indicted a hacker who has been charged with selling network backend access rights of hundreds of organizations and companies around the world and is the mastermind of corporate cyber crimes.
Hackers used the vulnerability of game Runescape to carry out Double Spending attack to obtain trillions of game coins, which was worth more than $250,000, and used these funds to buy BTC. It was reported that Jagex, the publisher of Runescape, has patched Runescape’s vulnerabilities, but hackers still could perform similar Double Spending attack on Runescape 3.
The digital banking APP and technology unicorn Dave.com were hacked. The hackers posted details of 7,516,625 users on the public forum, and anyone could download the data.
The University of York in UK announced a data breach in which hackers stole personal details of staff and students. The stolen data might include information such as names, dates of birth and student numbers, as well as addresses, phone numbers, email addresses, and major details.
In view of the current new situation in the field of Blockchain security, Beosin hereby summarizes:
On the whole, the number of typical Blockchain security incidents that occurred in July is the same as in June, and the overall number of security incidents is still at a Medium level. Therefore, we still cannot relax our vigilance when facing the security issues of Blockchain ecosystem.
Furthermore, it should be noted that considerable vulnerabilities of exchanges were exposed in this month. Hence, Beosin recommends that all exchanges must do a great job of code auditing and security testing before conducting exchanges and contracts to go online, and also carry out regular security inspection after going online to maintain a secure network environment.
In terms of Crypto Frauds/ Crypto Scams, most of the security incidents that occurred in this month were caused by hackers stealing target accounts. Beosin hereby reminds users that whether using corporate accounts or personal accounts, the security issue of accounts should be paid attention to, and do not disclose the passwords to others.
In terms of Ransomware/ Trojan of Mining, the number of related security incidents was still high; but in terms of Exchange, the security situation was relatively well. However, we still need to call on all users and exchanges not to relax the vigilance. Because even one trivial loophole may cause huge losses. Therefore, we must maintain good security habits in daily work, and seek the professional security company for regular security maintenance.