185 Blockchain Hacking Incidents with $920M Loss Reported by SlowMist in First Half of 2023

SlowMist, a renowned blockchain security firm, has recently published its mid-2023 report on Blockchain Security and Anti-Money Laundering (AML). The report offers a comprehensive overview of the current global landscape of blockchain security and AML developments.

The first half of 2023 witnessed significant growth and increased security challenges in the blockchain sector. According to SlowMist’s Blockchain Hacked Incident Archive, there were 185 security breaches leading to a massive loss of $920 million. However, this figure represents a 54% decrease compared to the first half of 2022, which saw losses of around $2 billion.

The report categorizes the incidents into five sectors: DeFi/NFT/Bridge, Trading Platforms, Public Chain, Wallet, and Others. The DeFi, NFT, and Cross-chain Bridge sectors bore the brunt, with 131 incidents leading to losses of approximately $487 million. Despite fewer incidents in other categories, they still resulted in significant financial losses.

In a positive development, the first half of 2023 saw the successful recovery of stolen funds in 10 instances. Of the $232 million stolen, an impressive $219 million was reclaimed, including full refunds in three cases. This trend highlights the importance of robust security strategies and effective negotiations.

The report also underscores the intensifying global focus on Anti-Money Laundering. Regulatory bodies worldwide are reshaping the AML landscape, with notable actions taken by Tether, Circle, ChipMixer, the U.S. Treasury Department, Hong Kong, Indonesia, the United Kingdom, and France.

Mixing platforms such as Tornado Cash and eXch experienced significant user activity, being widely used for questionable transactions. Phishing scams, perpetrated by groups like Pink Drainer, Vemon Drainer, Monkey Drainer, Pussy Drainer, and Inferno Drainer, continue to pose a significant threat within the blockchain community.

The activities of hacking groups like the Lazarus Group highlight the escalating sophistication of threats within the blockchain ecosystem. These groups employ complex multi-chain paths and intricate transaction patterns to launder stolen assets and evade detection, necessitating advanced countermeasures and investigative methods.

SlowMist’s report aims to arm individuals and the broader blockchain industry with the knowledge needed to counter these evolving threats.


Tagged : / / / / / / /

Jump Crypto replenishes funds from $320M Wormhole hack in largest-ever DeFi ‘bailout’

On Thursday, Jump Crypto, a crypto venture capital firm that owns Certus One, the developer of the Wormhole token bridge, announced it had deposited 120 thousand Ether (ETH) into a Solana-Ethereum bridge that suffered a devastating exploit. The day prior, hackers fraudulently minted 120 thousand wrapped Ether (wETH) worth $321 million on the Solana (SOL) platform, then redeemed 93,750 wETH for ETH on the Ethereum network while swapping the rest for other altcoins on the Solana network.

The cross-chain ETH-wETH is supposed to have an exchange ratio of 1:1 against one another. Therefore, unauthorized minting of wETH leads to significant inflation, which can quickly degrade confidence in the underlying bridge. After the latest “bailout” by Jump Crypto and a patch fix, however, things appear to be back to normal, with Wormhole developers tweeting:

“All funds have been restored, and Wormhole is back up. ETH contract has been filled, and all wETH are backed 1:1.”

Many users quickly took to social media to thank Jump Crypto for the noble move, with @terrysoh87 writing:

Thank you so much. I know VC often gets hated on, but its times like this, everyone hopes VC saves the day. WAGMI [We are all going to make it]

But there also remains a glaring problem — the whereabouts of the “hacked funds” and whether or not the malicious actor who took them would face the consequences as to deter similar decentralized finance scams in the future. As these tokens were fraudulently minted and still exist in the ecosystem, it raises concerns about the fungibility of “hacked” ETH tokens as they are laundered into “clean” ETH. In addition, the minting of so many tokens could lead to temporary inflationary concerns. @dotstack (rhymer.stk) wrote: