Summa founder James Prestwich has accused the $382 million LayerZero bridging protocol of hosting a “critical vulnerability.” According to a Jan. 30 post by Prestwich, this vulnerability “could result in theft of all user funds.” LayerZero CEO Bryan Pellegrino has called Prestwich’s accusation “absolutely shocking” and “wildly dishonest,” claiming that the vulnerability only applies to applications that don’t modify the default configuration. Absolutely shocking that a competitor would put out a wildly dishonest post about us. Happy to have @zellic_io @osec_io @ZOKYO_io or any other of the auditing firms come comment and dispel but let me summarize. If you set …

As nonfungible tokens (NFTs) attract more users, they also capture the eyes of scammers. Bad actors in Web3 have set their sights on digital collectibles, with millions being lost through scams and various attacks. However, according to professionals working in the Web3 space, there are multiple ways and tools to prevent being a victim of NFT theft. In addition, users can also take various actions after losing their digital collectibles to hacks. Ronghui Gu, the co-founder and CEO of blockchain security firm CertiK, told Cointelegraph that the first and most important step is always due diligence. “Avoid clicking on suspicious …

North Korean exploiters behind the Harmony Bridge attack continue to launder the funds stolen in June 2022. According to on-chain data revealed on Jan. 28 by blockchain sleuth ZachXBT, the perpetrators moved another $27.18 million in Ethereum (ETH) over the weekend. The tokens were transferred to six different crypto exchanges, noted ZachXBT in a Twitter thread, without disclosing which platforms had received the tokens. Three main addresses carried out the transactions. According to ZachXBT, exchanges were notified about the funds transfer and part of the stolen assets were frozen. The movements made by the exploiters to launder the money were …

Azuki, a popular nonfungible token (NFT) project, had its Twitter account compromised on Jan. 27 leading to hackers stealing over $750,000 worth of USD Coin (USDC) by posting a malicious “wallet drainer link” posed as a virtual land mint. Hackers stole $751,321.80 USDC from a single wallet within half an hour of the malicious links being tweeted, according to Etherscan data provided to Cointelegraph by crypto wallet security firm Wallet Guard. The data also revealed that hackers stole a further $6,752.62 worth of USDC from various wallets holding 11 NFTs and over 3.9 Ether (ETH). Wallet Guard stated that the …

A hacker dubbed the “Blockchain Bandit” has finally woken from a six-year slumber and has started to move their ill-gotten gains. According to Chainalysis, around $90 million in crypto pilfered from the attacker’s long-running string of “programmatic theft” since 2016 has started moving over the past week. This included 51,000 Ether (ETH) and 470 Bitcoin (BTC), worth around $90 million leaving the Bandit’s address for a new one, with Chainalysis noting: “We suspect that the bandit is moving their funds given the recent jump in prices." The hacker was dubbed the “Blockchain Bandit” due to being able to empty Ethereum …

Kevin Rose, the co-founder of the nonfungible token (NFT) collection Moonbirds, has fallen victim to a phishing scam leading to more than $1.1 million worth of his personal NFTs stolen. The NFT creator and PROOF co-founder shared the news with his 1.6 million Twitter followers on Jan. 25 asking them to avoid buying any Squiggles NFTs until they manage to get them flagged as stolen. I was just hacked, stay tuned for details - please avoid buying any squiggles until we get them flagged (just lost 25) + a few other NFTs (an autoglyph) ... — KΞVIN R◎SE (,) (@kevinrose) …

An unknown group or individual has hacked the Twitter account behind crypto and stock trading platform Robinhood to push users to buy a 'new' token. Many Crypto Twitter users reported on Jan. 25 that Robinhood had posted a tweet calling on its 1.1 million followers to each pay $0.0005 for a token called ‘RBH’ on the Binance Smart Chain. Binance CEO Changpeng Zhao reported the company’s security team had locked the account linked in the tweet “pending further investigations”. Robinhood presumably hacked pic.twitter.com/UgRD3UCbo9 — db (@tier10k) January 25, 2023 At the time of publication, the tweet was no longer visible …

The hacker behind the $321 million Wormhole bridge attack has shifted a large chunk of stolen funds, with transaction data showing that $155 million worth of Ether (ETH) was transferred to a decentralized exchange (DEX) on Jan 23. The Wormhole hack was the third largest crypto hack in 2022, after the protocol’s token bridge suffered an exploit on Feb. 2, 2022, that resulted in the loss of 120,000 Wrapped ETH (wETH) around worth $321 million. According to the transaction history of the hacker’s alleged wallet address, the latest activity shows that 95,630 ETH was sent to the OpenOcean DEX and …

Non-fungible tokens (NFTs) are becoming an increasingly popular solution to serving defendants in blockchain-based crimes that would otherwise be unreachable, according to crypto lawyers. The last year has seen an increase in litigation delivered over NFTs in cases where those accused of blockchain crime wereuncontactable through traditional methods of communication. In November 2022, the United States District Court for the Southern District of Florida granted a United States law firm The Crypto Lawyers its request for its client to serve a defendant via NFT. While the defendant's identity was unknown, the plaintiff accused the defendant of stealing cryptocurrency to the …

The Federal Bureau of Investigation (FBI) has confirmed the Lazarus Group and APT38 as the culprits behind the $100 million Harmony Bridge Hack from June 2022. The North Korea-linked cyber group had long been suspected of being behind the attack but their involvement hadn’t been confirmed by authorities until now. According to a Jan. 23 statement, the FBI noted that “through our investigation, we were able to confirm that the Lazarus Group and APT38, cyber actors associated with the DPRK, are responsible for the theft of $100 million of virtual currency from Harmony’s Horizon bridge.” The Harmony Bridge hack in …

Welcome to Finance Redefined, your weekly dose of essential decentralized finance (DeFi) insights — a newsletter crafted to bring you significant developments over the last week. Following FTX’s demise, the DeFi space is up for a complete remodel as crypto users demand better security and compliance practices. SushiSwap’s roadmap for the coming year includes the development of a decentralized exchange (DEX) aggregator, a decentralized incubator and “several stealth projects.” All these projects combined can grow its market share 10x, said the CEO. The co-founder and CEO of Ava Labs spoke with Cointelegraph at the World Economic Forum in Davos, Switzerland, …

In an alert, blockchain security firm CertiK reported that the Raydium protocol exploiter had sent 1,774.5 Ether (ETH) to the mixer. The amount is worth around $2.7 million at the time of writing. While security teams from various exchanges continue to combat the efforts of hackers, funds continue to flow to the sanctioned cryptocurrency mixer Tornado Cash. #CertiKSkynetAlert We are seeing ~1,774.5 ETH (~$2.7M) being deposited into @TornadoCash from the Raydium exploiter 0xb98ac as labeled on https://t.co/lb2v6r8c4s. Stay vigilant! pic.twitter.com/JVqWAw9MVO — CertiK Alert (@CertiKAlert) January 19, 2023 The attack on the Solana-based decentralized finance (DeFi) protocol occurred back on Dec. …