Security → Feed 13

A critical flaw in Bedrock's uniBTC minting logic allowed attackers to bypass price validation, enabling disproportionate token creation and liquidity drainage.

A central, gleaming metallic and blue structure features nested square frames encircling a luminous blue sphere, reminiscent of a secure enclave. Orbiting silver rings with crystalline elements suggest cryptographic primitives securing a decentralized network. The blurred background depicts abstract data flows, hinting at blockchain network topology and robust transaction validation. This visual metaphor encapsulates a complex consensus mechanism, underpinning digital asset integrity and algorithmic governance within a robust distributed ledger.

→Code Vulnerability

→Smart Contract

→DeFi Security

Bedrock uniBTC Minting Vulnerability Exploited for $2 Million

A critical code flaw in Bedrock's uniBTC minting logic allowed attackers to arbitrage price discrepancies, leading to a significant asset drain.

A sleek, metallic, X-shaped structure, embodying a robust cross-chain interoperability protocol, is centrally positioned against a backdrop of volumetric blue and white forms. The dense blue formations transition into lighter, ethereal white masses, illustrating dynamic data streams or network throughput. This sophisticated architecture suggests a framework for atomic swaps or smart contract execution, embedded within the evolving complexities of decentralized ledger technology. The interplay highlights the intricate mechanisms of liquidity aggregation and validator node interactions, fundamental to a thriving Web3 ecosystem.

→Code Audit Failure

→Developer Oversight

→State Manipulation

Nemo Protocol Hacked via Developer’s Unaudited Code Deployment

A developer's unreviewed code introduced critical flash loan and query function flaws, enabling a $2.6 million state manipulation exploit.

An intricate mechanical assembly, resembling a precision watch movement, forms the foundation. A silver, circular cryptocurrency token, possibly an algorithmic stablecoin, is embedded within this sophisticated protocol mechanics. Above it, a complex, vibrant blue structure of interconnected cubic blocks represents dynamic blockchain infrastructure and decentralized ledger technology. This visual narrative emphasizes the underlying engineering and smart contract execution supporting digital asset tokenization within a robust DeFi ecosystem, illustrating the transition from traditional mechanisms to advanced distributed systems.

→Token Drain

→DeFi

→Vulnerability Management

Onyx Protocol NFT Liquidation Contract Exploited, Draining $3.8 Million

A critical flaw in Onyx Protocol's NFT liquidation contract enabled vUSD stablecoin draining, highlighting risks in complex DeFi contract interactions.

A sleek, translucent blue hardware device features a prominent metallic authentication button, suggesting robust digital asset security. Intricate, luminous blue patterns flow within the device's chassis, visually representing real-time blockchain data propagation and transaction validation. This secure enclave likely facilitates private key management and multi-signature approvals for decentralized finance DeFi protocols. Its design emphasizes tamper-evident cold storage, crucial for safeguarding cryptocurrency holdings and enabling secure dApp interactions. The interface could support biometric authentication for enhanced user access control.

→Token Manipulation

→Smart Contract

→Flash Loan

Shibarium Network Suffers $2.4 Million Flash Loan Validator Key Exploit

A flash loan attack manipulated governance tokens to seize validator control, exposing critical Layer 2 consensus vulnerabilities.

A central formation of four dark blue, rectangular modules, suggestive of blockchain nodes or processing units, are intricately arranged in a cross-like configuration. These robust components exhibit detailed circuitry, implying complex computational processes vital for transaction validation. Encasing and interconnecting these units is a translucent, organic, web-like structure, visually representing a distributed ledger network topology or a consensus algorithm in action. This ethereal network highlights the dynamic flow of data and the interoperability protocols facilitating secure, decentralized operations within a Web3 infrastructure. The composition evokes a sense of advanced, self-organizing digital mechanisms.

→Digital Asset Security

→Supply Chain

→Cyber Hygiene

North Korean Hackers Exploit Social Engineering, Supply Chains to Breach Crypto Firms

Sophisticated social engineering and supply chain attacks enable persistent adversaries to compromise critical crypto infrastructure, demanding enhanced human and technical defenses.

A blue, segmented, hexagonal chain-like structure intricately overlays a dark, high-tech circuit board. This visual metaphor represents a blockchain's interconnected nodes within a distributed ledger network. The underlying circuitry symbolizes the foundational cryptographic infrastructure supporting transaction validation and immutable record keeping. Each segment could signify a block containing digital assets or smart contract data, secured by a consensus mechanism. This visual emphasizes the decentralized and peer-to-peer nature of Web3 ecosystems.

→Crypto Security

→Smart Contract

→Vulnerability

New Gold Protocol Suffers Oracle Manipulation Flash Loan Exploit

A single-source price oracle vulnerability enabled a flash loan attack, demonstrating critical risks in undiversified DeFi valuation mechanisms.

A translucent, frosted polymer casing encases a prominent, circular metallic button, likely a biometric authentication sensor, central to a hardware wallet. A vibrant blue luminescence emanates from within, suggesting an active secure enclave or cryptographic module. This device facilitates robust cold storage for digital assets, safeguarding private keys and enabling secure transaction signing. Its design implies a tamper-proof mechanism for decentralized identity verification or a dedicated Proof-of-Stake validator interface, crucial for DLT integrity.

→Multi-Signature

→Proxy Contract

→Asset Restaking

Zoth Protocol Suffers $8.4 Million Private Key Compromise and Malicious Upgrade

A compromised private key enabled a malicious smart contract upgrade, demonstrating the critical vulnerability of single points of control in DeFi protocols.

A close-up reveals a sleek, translucent device featuring a prominent brushed metallic button, illuminated by an ethereal blue glow. This sophisticated interface suggests a secure hardware wallet or biometric authentication module, critical for safeguarding digital assets. The radiant blue signifies active cryptographic signature generation or successful transaction signing, essential for decentralized finance DeFi interactions and Web3 dApp access. It represents a non-custodial solution for private key management, enabling secure blockchain operations and multi-factor authentication MFA.

→Threat Detection

→Incident Response

→Governance Action

Venus Protocol User Account Compromised via Social Engineering

A sophisticated social engineering attack leveraged a compromised Zoom client, granting delegate control over a Venus Protocol user's account and putting $13 million at risk.

A close-up reveals a prominent metallic button embedded within a translucent blue casing, showcasing internal components. This sophisticated hardware wallet facilitates secure transaction signing and private key management. It functions as a secure element for cold storage of digital assets, offering robust blockchain security. The device's design suggests a Web3 interface for decentralized finance DeFi interactions, potentially supporting multi-signature approvals and cryptographic proof mechanisms for enhanced user control and asset protection.

→Layer-2 Security

→Systemic Vulnerability

→Asset Exfiltration

Shibarium Bridge Suffers $2.4 Million Flash Loan and Validator Key Exploit

A flash loan attack exploited Shibarium's governance token mechanism, compromising validator keys and enabling unauthorized asset exfiltration, exposing critical systemic risk.

Security877

Bedrock uniBTC Mint Function Exploited, $2 Million Drained

Bedrock uniBTC Minting Vulnerability Exploited for $2 Million

Nemo Protocol Hacked via Developer’s Unaudited Code Deployment

Onyx Protocol NFT Liquidation Contract Exploited, Draining $3.8 Million

Shibarium Network Suffers $2.4 Million Flash Loan Validator Key Exploit

North Korean Hackers Exploit Social Engineering, Supply Chains to Breach Crypto Firms

New Gold Protocol Suffers Oracle Manipulation Flash Loan Exploit

Zoth Protocol Suffers $8.4 Million Private Key Compromise and Malicious Upgrade

Venus Protocol User Account Compromised via Social Engineering

Shibarium Bridge Suffers $2.4 Million Flash Loan and Validator Key Exploit

Incrypthos

Stop Scrolling. Start Crypto.