AGGREGATOR

Looks like @FixedFloat just got exploited for 1700 ETH!

Drainer address: 0x85c4fF99bF0eCb24e02921b0D4b5d336523Fa085

Info by: @reprove

487 views12:27

Forwarded from Vladimir S. | Officer's Channel (officercia)

PSA there's a fake Rabby wallet app on the AppStore. The real one is still under review.

• x.com/officer_cia/status/1759458398955810833

#security #alert

PSA there's a fake @Rabby_io wallet app on the @AppStore !

The real one is still under review...

525 views06:04

Forwarded from Vladimir S. | Officer's Channel (officercia)

PSA!

There’s a fake PancakeSwap on the Apple AppStore (found on Canadian but not US).

• x.com/officer_cia/status/1762836314347409683

#security #alert

PSA!

There’s a fake @PancakeSwap on the Apple @AppStore (found on Canadian but not US).

It vaguely looks like the app changed its apperanced if you look at the Version History descriptions…

Spotted by @d0wnlore

392 views13:49

Forwarded from ALL TIME HIGH

Please open Telegram to view this post

VIEW IN TELEGRAM

500 views13:30

Forwarded from Vladimir S. | Officer's Channel (officercia)

Something going on with pump.fun on Solana, recommend to not buy any coins/listings until official announcements!

• x.com/officer_cia/status/1791141112926577076?1

#alert #security #opsec

Officer's Notes (@officer_cia) on X

Something going on with https://t.co/30xtV9vFch on @solana, recommend to not buy any coins/listings until official announcements.

483 views16:35

Forwarded from Vladimir S. | Officer's Channel (officercia)

Velocore on zksync and linea got hack, aronund 10m!

TX hash: 0xce7125b2104e5dd8156357be6febe6ee59ddcbd79ae010166df69487ae17b5bc

All LPs gone: x.com/officer_cia/status/1797068809959854340

#security #alert

668 views03:39

Forwarded from Vladimir S. | Officer's Channel (officercia)

Analysis (Velocore): x.com/officer_cia/status/1797101710105612667

#security #alert #web3

@BlockSecTeam @krakovia_evm Update on the situation!

447 views17:51

Forwarded from Vladimir S. | Officer's Channel (officercia)

Looks like UwU_Lend is being attacked/drained right now!

So far drained around $18M!

• x.com/officer_cia/status/1800141530356928987

#alert #security #web3

452 views12:26

Forwarded from Vladimir S. | Officer's Channel (officercia)

Attacker has executed 3 transactions and was able to get around $19.5M. But hack is still ongoing! Amount might increase. Right now attacker is swapping stolen digital assets to $ETH.

Attacker has been funded by TornadoCash 2 days ago!

#alert #security #web3

554 views13:06

Forwarded from Vladimir S. | Officer's Channel (officercia)

Move your funds on all chains ASAP if you created your wallets using CoinStats!

• x.com/officer_cia/status/1804613273033338968

#security #alert

500 views03:33

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

Currently someone is withdrawing tokens and swapping for ETH.

Multiple addresses drained, but not all tokens drained. Looks strange. Anyone knows what is happening?

16 million $ gone so far!

Thread: https://x.com/officer_cia/status/1833626322226319624?s=46

#security #alert

753 views22:38

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

1inch Front-End seems to be compromised…

• https://x.com/officer_cia/status/1851748045953622304

DO NOT CONNECT WALLET!

P.S. Do not revoke approvals, since only front-end has been hacked so far. Contracts seem to be safe.

Reference: @infinityhedge, Coinspect Security

#security #alert

944 views04:52

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

Clipper DEX is hacked due to API vulnerability (like private key leak). $500K+ loss and $6.5M at risk right now. Withdraw immediately.

• https://x.com/officer_cia/status/1863108671221157985

#security #alert

Clipper Exchange @Clipper_DEX is hacked due to API vulnerability (like private key leak). $500K+ loss and $6.5M at risk right now. Withdraw immediately. - @shoucccc

659 views06:34

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

Urgent! 🚨

🚨

Open Ocean Limit Order Protocol on Base has been exploited, attacker's address:

0x5cc162c556092fe1d993b95d1b9e9ce58a11dbc9

The approved tokens are being drained because even if they upgrade the contract and pause the old one - it doesn't matter.

More information (thread): https://x.com/officer_cia/status/1889400165322334289?s=46

#security #alert

Please open Telegram to view this post

VIEW IN TELEGRAM

Urgent!

Open Ocean Limit Order Protocol on Base has been exploited, attacker's address: 0x5cc162c556092fe1d993b95d1b9e9ce58a11dbc9. The approved tokens are being drained because even if they upgrade the contract and pause the old one - it doesn't matter.…

1.0K views19:58

Free crypto analytics by and for the community. Access crypto data tools and blockchain analytics with 700,000+ dashboards covering DeFi, NFTs, and onchain data. Track meme coin metrics, DEX analysis, and more across dozens of protocols like Ethereum, Bitcoin…

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

I tried to decompile it and kinda fell into some maze... and it's probably not written in Solidity, there calldata is not multiple of 32 bytes.
and there's only one function for all actions and it's called 0xb00b11e5, like "0x boobs!!!" lol 😂

UPD:

It seems that money is being lost by LPs from pools! The pool lost money to USDC, then swapped it to WETH and unwrapped it. Basically money is being lost by both LPs and those who bought the token - looks like a rugpool or hack: https://dune.com/1inch/tx?blockchain_ed203c=base&tx+hash_tb3fb6=0xb9a54c186ec934e1d5eb3ba0743383a0422955cacf31458457f662fad5df7184

#hack #alert #security

Please open Telegram to view this post

VIEW IN TELEGRAM

Dune

EVM Transaction

1.1K views21:50

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

🚨

Abstract Wallets are being drained as we speak!

If you've connected your AbstractChain wallet to Cardex, make sure to disconnect it & revoke all approvals you might have given.

Over 50 ETH has already been drained, and it's not a network-wide issue. The exploit is specifically targeting those who linked their abstract wallets to Cardex.

• https://x.com/officer_cia/status/1891852031041605841?s=46

#alert #security

Please open Telegram to view this post

VIEW IN TELEGRAM

🚨 Abstract Wallets are being drained as we speak!

If you've connected your @AbstractChain wallet to @cardex_space, make sure to disconnect it & revoke all approvals you might have given.

Over 50 ETH has already been drained, and it's not a network-wide…

917 views14:15

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

Rumours: «Seems that Bybit CEX hot wallet just got hacked.

Though, it's a multi-sign $1.5B worth of ETH was withdrawn to the new address and is currently being sold.»

More information: https://x.com/officer_cia/status/1892957601224151331?s=46

#security #alert

Rumours: «Seems that @Bybit_Official hot wallet just got hacked.

Though, it's a multi-sign $1.5B worth of ETH was withdrawn to the new address and is currently being sold.»

562 views15:31

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

Important! They did announce some wallet migration/maintaince recently.

Waiting for more news/official statements.

#alert #security

520 views15:31

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

Rumours: Entangle hacked, hacker minted 13b tokens. Some bridge issue potentially.

Can anyone confirm?

• https://x.com/officer_cia/status/1898531364711915747

#security #alert

Rumours: Entangle hacked, hacker minted 13b tokens. Some bridge issue potentially.

https://t.co/rBLR9NyvK5

1.4K views04:28

Forwarded from Vladimir S. | Officer's Channel (Vladimir S. | officercia)

BugBounty platform HackerOne has allegedly leaked all its users, including platform access passwords. So, if you're a user of this platform, it's time to change your login credentials!

• https://x.com/officer_cia/status/1899150819116646705?s=46

#alert #offtopic