Web3 Security Alerts @web3_security_alerts Channel on Telegram

Web3 Security Alerts

@web3_security_alerts

A channel for various Web3 security people to share alerts as an alternative to Twitter

Web3 Security Alerts (English)

Are you a part of the Web3 security community? Do you want to stay updated on the latest alerts and news in the world of Web3 security? Look no further than the 'Web3 Security Alerts' Telegram channel - your go-to source for all things related to Web3 security. As an alternative to Twitter, this channel provides a platform for various Web3 security professionals to share alerts, updates, and valuable insights with the community. Whether you are a developer, security researcher, or simply interested in the security aspects of Web3 technologies, this channel is designed to keep you informed and connected. With the rapid growth of Web3 technologies such as blockchain, decentralized finance (DeFi), NFTs, and more, the need for strong security measures has never been greater. The 'Web3 Security Alerts' channel aims to address this need by providing timely alerts on potential threats, vulnerabilities, and best practices to mitigate risks in the Web3 space. By joining this channel, you will have access to real-time updates on security incidents, data breaches, phishing attempts, and other security-related events that could impact the Web3 ecosystem. Additionally, you can engage with other members of the community, ask questions, and share your own insights to collectively enhance the security posture of Web3 applications and platforms. Whether you are a seasoned security professional or someone looking to learn more about Web3 security, the 'Web3 Security Alerts' channel offers a valuable resource for staying informed and connected in the ever-evolving world of Web3 technologies. Join us today and be a part of the growing community dedicated to securing the future of Web3. Don't miss out on important security alerts and updates - join 'Web3 Security Alerts' now and stay ahead of potential threats in the Web3 ecosystem!

Web3 Security Alerts

02 Aug, 09:04

Uwerx network (https://www.uwerx.network/) compromised (or rugged?) a few minutes ago: https://twitter.com/hexagate_/status/1686660090072379392
9,601
Web3 Security Alerts

30 Jul, 15:49

Alchemix and Metronome DAO also been hacked due to a missing reentrancy locks on remove_liquidity and add_liquidity possibly due to a bug on an old Vyper compilers: https://twitter.com/hexagate_/status/1685677801813217280
11,976
Web3 Security Alerts

30 Jul, 13:42

JPEGd pETH has just been hacked due to a reentrancy in a Curve pool for 11 million USD.

https://twitter.com/DecurityHQ/status/1685646377198505985

The attacker was frontrunned by a MEV bot: https://etherscan.io/tx/0xa84aa065ce61dbb1eb50ab6ae67fc31a9da50dd2c74eefd561661bfce2f1620c
20,128
Web3 Security Alerts

21 Jul, 10:50

[Conic Finance Hacked]

Summary
Conic Finance was hacked for ~3MM

Current Status
Triaging

Timeline
10:35 AM - Hack tx (https://etherscan.io/tx/0x8b74995d1d61d3d7547575649136b8765acb22882960f0636941c44ec7bbe146)
10,093
Web3 Security Alerts

20 Jul, 20:08

[Hayden Twitter Hack]

Summary
@haydenzadams Twitter account was compromised

Current Status
Account has been recovered

Timeline
2023/07/20
8:08 PM - Initial report
8:16 PM - Blocked in Metamask
8:26 PM - Blocked in Coinbase Wallet
8:36 PM - New phishing link tweeted
8:38 PM - Blocked in Coinbase Wallet
8:42 PM - New phishing link
8:43 PM - Blocked in Coinbase Wallet
8:50 PM - Blocked in Metamask
2023/07/21
12:17 AM - Account recovered
12,610
Web3 Security Alerts

18 Jul, 14:17

APEDAO has just been hacked for $7k:

https://twitter.com/DecurityHQ/status/1681307025391906816

https://bscscan.com/tx/0x8d35dfd9968ce61fb969ffe8dcc29eeeae864e466d2cb0b7d26ce63644691994
6,590
Web3 Security Alerts

16 Jul, 11:53

Two tokens "9419" and "6827" deployed on BSC were just hacked for around $150k using a flashloan:

https://twitter.com/DecurityHQ/status/1680544938725892096

An attacker did a few mistakes before pulling off a successful tx: https://bscscan.com/address/0x6b7112097404e3d956195f04f75d0e48eb5a9858
9,286
Web3 Security Alerts

15 Jul, 07:33

Someone found a low hanging fruit on the mainnet:

https://twitter.com/DecurityHQ/status/1680117291013267456

https://etherscan.io/tx/0xfc872bf5ca8f04b18b82041ec563e4abf2e31e1fc27d1ea5dee39bc8a79d2d06
5,798
Web3 Security Alerts

11 Jul, 08:12

https://twitter.com/hexagate_/status/1678669303623680002

Sus tx: https://polygonscan.com/tx/0x7320accea0ef1d7abca8100c82223533b624c82d3e8d445954731495d4388483
6,531
Web3 Security Alerts

06 Jul, 19:58

[Aptos Twitter Hack]

Summary
@Aptos_Network and @moshaikhs Twitter accounts were compromised

Current status
Accounts have been recovered

Timeline
2023/07/06
7:52 PM UTC - @Aptos_Network tweets phishing link
8:04 PM UTC - Phishing URL merged into Metamask blocklist
8:13 PM UTC - Phantom is now blocking the phishing URL
~11:00 PM UTC - The accounts seem to have been recovered
7,806
Web3 Security Alerts

06 Jul, 19:28

[Multichain Drain/Rugpull]

Summary
Multichain MPC bridges had assets unexpectedly transferred out totaling over 100MM

Current status
Multichain team has confirmed that this was not expected and urges users to cease usage and revoke approvals. It does appear that the bridge is still processing some withdrawals successfully.

Timeline (all times UTC)
2023/07/06
4:21 PM - First suspicious transaction is sent (https://etherscan.io/tx/0xde3eed5656263b85d43a89f1d2f6af8fde0d93e49f4642053164d773507323f8)
6:33 PM - 30MM WBTC withdrawn from Multichain bridge, among others (https://etherscan.io/tx/0x448f2a6a6c071cdce254937e06305a033538e1aeb9339227d0e59e0458e6185c)
7:06 PM - PeckShield tweets (https://twitter.com/peckshield/status/1677031203772289030)
7:35 PM - LayerZero confirms that they're not directly involved
7:46 PM - Multichain Moonriver bridge begins being drained (https://etherscan.io/tx/0xf830239f39ff21b8634e28cf3fea730069982478465ee5c3ba8e8706d0cef50f)
8:05 PM - Multichain Dogechain bridge begins being drained (https://etherscan.io/tx/0x6bbc867004b4c6650f2b55131955075c4109c32138753147eb142fa431cc84c9)
11:27 PM - Multichain releases a statement stating that this was not intentional and the team is investigating (https://twitter.com/MultichainOrg/status/1677096839731097600)
2023/07/07
4:55 PM - Circle blacklists suspicious addresses (https://etherscan.io/tx/0x5a6ccaebe4e97298e27a40d8dd3fc59661935694c7a96b28c0de1165a725d3fc)
2023/07/08
7:18 AM - Tether blacklists suspicious addresses (https://etherscan.io/tx/0x9abf667f697ffccc2f2036aede9b335b7a732d9e3a9b1b94d70bbb3178c98c60)
2023/07/09
7:30 PM - Multichain MPC begins unexpectedly withdrawing anyUSDT (https://etherscan.io/tx/0x04a1ed178fce750a83878631df64592e4ff78717f1a59b51edc6a0e675c647ec)
11,906
Web3 Security Alerts

02 Jul, 08:58

PolyNetwork attack details by BlockSec https://docs.google.com/spreadsheets/u/1/d/1X5QF_ipMm8YnYj86Qvy8XXFvao3HwYgrEoOHBRBvZVM
4,623
Web3 Security Alerts

02 Jul, 02:02

https://twitter.com/peckshield/status/1675307222727786497
4,305
Web3 Security Alerts

18 Dec, 18:08

Channel created
0

2024 All Right Reserved

Disclaimer: The content displayed on this website is solely provided by the respective Telegram channels. We hold no ownership or responsibility for the content shared by these channels.