Inventory | More than 22 typical security incidents occurred in October, mainly in areas of DeFi and encryption scams

It’s time for another monthly security inventory! Beosin Eagle-Eye shows that in October 2021, various security incidents still occur from time to time. According to BEOSIN’s statistics, more than ‘20’ typical security incidents in occurred October.

From a general point of view, the blockchain security incidents in October decreased slightly compared to September, and the overall number of security incidents still remains at a high-risk level. This month continued to focus on two areas, DeFi and crypto scams.

In terms of Defi, there were ‘8’ typical security incidents

01

DeFI protocol AutoShark Finance suffered a flash loan attack, and the hackers made a profit of about $580,000.

02

POAP minting system was hacked and several POAPs were fraudulently issued and sold.

03

Passive income protocol Indexed Finance was attacked with a loss of approximately $16 million.

04

The DeFi protocol Pancake Hunny on BSC was attacked by a flash loan attack.

05

Avalanche eco-protocol Avaterra Finance was hacked with a serious vulnerability in the minting contract.

06

DeFi lending protocol Cream Finance was attacked with a loss about $130 million.

07

DeFi Protocol AutoShark Finance Hacked, Hackers Make About $2 Million in Profits.

08

On October 30, the decentralized trading protocol BXH project was attacked and approximately $130 million was stolen.

In terms of fraudulent runaways/crypto scams, there were ‘12’ typical security incidents

01

European authorities arrested ransomware gang members in Ukraine and confiscated $1.3 million in cryptocurrency.

02

A fraudster made $138,000 in profits from a digital statue NFT project sales scam.

03

NFT project Evolved Apes suspected of escaping and taking away 798 ETH worth $2.7 million.

04

The FBI teamed up with Israeli police to arrest 26 people in a cryptocurrency fraud case.

05

U.S. nuclear engineer couple charged for selling Navy secrets in exchange for $100,000 in XMR.

06

Moonriver’s on-chain DEX MoonSwap IDO project SaturnBeam runs away.

07

Police in Zunyi, China destroyed a mega virtual currency money laundering ring, involving laundering flows of 800 million yuan.

08

Scammers defrauded $1.4 million by luring users to install the fake crypto app CryptoRom.

09

Police in Jiangsu Province, China uncovered a case of cyber extortion using the Bitcoin ransomware virus, involving more than $5 million.

10

A case of “digital currency swipe” scam was opened in Shandong Province, China, involving an amount of ten million yuan.

11

Ukrainian Security Service caught a criminal gang selling malware that steals bitcoin.

12

International police busted a 150-person dark web drug trafficking ring and seized $4.9 million worth of cryptocurrency.

In terms of ransomware/mining Trojans, there were ‘2’ typical security incidents

01

A crypto miner in the UK was sentenced to over 13 months in prison for stealing £32,000 in electricity to run a bitcoin miner.

02

A npm package that is downloaded millions of times per week was hacked and embedded with a malicious cryptocurrency mining program.

Note

In light of the current situation of blockchain security, BEOSIN hereby concludes:

Although the number of blockchain security incidents this month has dropped slightly compared to previous months, the overall number of security incidents still occurs from time to time. Once again, BEOSIN recommends that users must do a good job of the corresponding security protection construction, carry out real-time monitoring of the abnormal operations. Early detections, early resolutions. All users should also enhance their own security awareness to avoid serious losses.

Blockchian Security · IDE · Beosin-VaaS · Formal Verification · SAS | China leading enterprise in blockchain security field