Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
Currently someone is withdrawing tokens and swapping for ETH.
Multiple addresses drained, but not all tokens drained. Looks strange. Anyone knows what is happening?
16 million $ gone so far!
Thread: https://x.com/officer_cia/status/1833626322226319624?s=46
#security #alert
Multiple addresses drained, but not all tokens drained. Looks strange. Anyone knows what is happening?
16 million $ gone so far!
Thread: https://x.com/officer_cia/status/1833626322226319624?s=46
#security #alert
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
1inch Front-End seems to be compromised…
• https://x.com/officer_cia/status/1851748045953622304
DO NOT CONNECT WALLET!
P.S. Do not revoke approvals, since only front-end has been hacked so far. Contracts seem to be safe.
Reference: @infinityhedge, Coinspect Security
#security #alert
• https://x.com/officer_cia/status/1851748045953622304
DO NOT CONNECT WALLET!
P.S. Do not revoke approvals, since only front-end has been hacked so far. Contracts seem to be safe.
Reference: @infinityhedge, Coinspect Security
#security #alert
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
Clipper DEX is hacked due to API vulnerability (like private key leak). $500K+ loss and $6.5M at risk right now. Withdraw immediately.
• https://x.com/officer_cia/status/1863108671221157985
#security #alert
• https://x.com/officer_cia/status/1863108671221157985
#security #alert
X (formerly Twitter)
Vladimir S. | Officer's Notes (@officer_cia) on X
Clipper Exchange @Clipper_DEX is hacked due to API vulnerability (like private key leak). $500K+ loss and $6.5M at risk right now. Withdraw immediately. - @shoucccc
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
Urgent! 🚨 🚨
Open Ocean Limit Order Protocol on Base has been exploited, attacker's address:
The approved tokens are being drained because even if they upgrade the contract and pause the old one - it doesn't matter.
More information (thread): https://x.com/officer_cia/status/1889400165322334289?s=46
#security #alert
Open Ocean Limit Order Protocol on Base has been exploited, attacker's address:
0x5cc162c556092fe1d993b95d1b9e9ce58a11dbc9
The approved tokens are being drained because even if they upgrade the contract and pause the old one - it doesn't matter.
More information (thread): https://x.com/officer_cia/status/1889400165322334289?s=46
#security #alert
Please open Telegram to view this post
VIEW IN TELEGRAM
X (formerly Twitter)
Vladimir S. | Officer's Notes (@officer_cia) on X
Urgent!
Open Ocean Limit Order Protocol on Base has been exploited, attacker's address: 0x5cc162c556092fe1d993b95d1b9e9ce58a11dbc9. The approved tokens are being drained because even if they upgrade the contract and pause the old one - it doesn't matter.…
Open Ocean Limit Order Protocol on Base has been exploited, attacker's address: 0x5cc162c556092fe1d993b95d1b9e9ce58a11dbc9. The approved tokens are being drained because even if they upgrade the contract and pause the old one - it doesn't matter.…
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
I tried to decompile it and kinda fell into some maze... and it's probably not written in Solidity, there calldata is not multiple of 32 bytes.
and there's only one function for all actions and it's called 0xb00b11e5, like "0x boobs!!!" lol😂
UPD:
It seems that money is being lost by LPs from pools! The pool lost money to USDC, then swapped it to WETH and unwrapped it. Basically money is being lost by both LPs and those who bought the token - looks like a rugpool or hack: https://dune.com/1inch/tx?blockchain_ed203c=base&tx+hash_tb3fb6=0xb9a54c186ec934e1d5eb3ba0743383a0422955cacf31458457f662fad5df7184
#hack #alert #security
and there's only one function for all actions and it's called 0xb00b11e5, like "0x boobs!!!" lol
UPD:
It seems that money is being lost by LPs from pools! The pool lost money to USDC, then swapped it to WETH and unwrapped it. Basically money is being lost by both LPs and those who bought the token - looks like a rugpool or hack: https://dune.com/1inch/tx?blockchain_ed203c=base&tx+hash_tb3fb6=0xb9a54c186ec934e1d5eb3ba0743383a0422955cacf31458457f662fad5df7184
#hack #alert #security
Please open Telegram to view this post
VIEW IN TELEGRAM
Dune
EVM Transaction
Free crypto analytics by and for the community. Access crypto data tools and blockchain analytics with 700,000+ dashboards covering DeFi, NFTs, and onchain data. Track meme coin metrics, DEX analysis, and more across dozens of protocols like Ethereum, Bitcoin…
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
If you've connected your AbstractChain wallet to Cardex, make sure to disconnect it & revoke all approvals you might have given.
Over 50 ETH has already been drained, and it's not a network-wide issue. The exploit is specifically targeting those who linked their abstract wallets to Cardex.
• https://x.com/officer_cia/status/1891852031041605841?s=46
#alert #security
Please open Telegram to view this post
VIEW IN TELEGRAM
X (formerly Twitter)
Vladimir S. | Officer's Notes (@officer_cia) on X
🚨 Abstract Wallets are being drained as we speak!
If you've connected your @AbstractChain wallet to @cardex_space, make sure to disconnect it & revoke all approvals you might have given.
Over 50 ETH has already been drained, and it's not a network-wide…
If you've connected your @AbstractChain wallet to @cardex_space, make sure to disconnect it & revoke all approvals you might have given.
Over 50 ETH has already been drained, and it's not a network-wide…
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
Rumours: «Seems that Bybit CEX hot wallet just got hacked.
Though, it's a multi-sign $1.5B worth of ETH was withdrawn to the new address and is currently being sold.»
More information: https://x.com/officer_cia/status/1892957601224151331?s=46
#security #alert
Though, it's a multi-sign $1.5B worth of ETH was withdrawn to the new address and is currently being sold.»
More information: https://x.com/officer_cia/status/1892957601224151331?s=46
#security #alert
X (formerly Twitter)
Vladimir S. | Officer's Notes (@officer_cia) on X
Rumours: «Seems that @Bybit_Official hot wallet just got hacked.
Though, it's a multi-sign $1.5B worth of ETH was withdrawn to the new address and is currently being sold.»
Though, it's a multi-sign $1.5B worth of ETH was withdrawn to the new address and is currently being sold.»
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
Rumours: Entangle hacked, hacker minted 13b tokens. Some bridge issue potentially.
Can anyone confirm?
• https://x.com/officer_cia/status/1898531364711915747
#security #alert
Can anyone confirm?
• https://x.com/officer_cia/status/1898531364711915747
#security #alert
X (formerly Twitter)
Vladimir S. | Officer's Notes (@officer_cia) on X
Rumours: Entangle hacked, hacker minted 13b tokens. Some bridge issue potentially.
https://t.co/rBLR9NyvK5
https://t.co/rBLR9NyvK5
Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)
BugBounty platform HackerOne has allegedly leaked all its users, including platform access passwords. So, if you're a user of this platform, it's time to change your login credentials!
• https://x.com/officer_cia/status/1899150819116646705?s=46
#alert #offtopic
• https://x.com/officer_cia/status/1899150819116646705?s=46
#alert #offtopic
X (formerly Twitter)
Vladimir S. | Officer's Notes (@officer_cia) on X
BugBounty platform HackerOne has allegedly leaked all its users, including platform access passwords. So, if you're a user of this platform, it's time to change your login credentials!