🚀 Shezmu Vault Exploited, Users Advised to Avoid DApp Interaction
#Shezmu #vault #exploitation #DApp #security #bounty #ETH #hack #DeFi #tokens #collateral #keyleak
According to Foresight News, the leveraged yield protocol Shezmu has announced that one of its vaults has been exploited. Users are advised not to interact with its DApp until further notice. Shezmu has offered a 10% bounty of the exploited funds to the hacker if they return the funds within 24 hours. The protocol has also updated that it has recovered 282.18 ETH from a white hat bounty hunter.
Additionally, Ancilia monitoring has reported that Shezmu (ShezETH) was attacked, potentially due to a key leak. An extra 9,900 ShezETH tokens were minted and exchanged for 332 ETH, valued at $880,000. The minter was granted the contract 17 days ago. Furthermore, ShezmuUSD was also compromised, though it is unclear if this is related to the Deployer key leak. The collateral contract lacks mint() protection, allowing anyone to mint collateral tokens.#Shezmu #vault #exploitation #DApp #security #bounty #ETH #hack #DeFi #tokens #collateral #keyleak
🚀 HashiCorp Vault Vulnerabilities Pose Security Risks in Cryptocurrency Sector
#HashiCorp #Vault #Vulnerabilities #Security #Cryptocurrency #ZeroDay #Authentication #Authorization #RemoteCode #InfrastructureSecurity #Upgrade
According to PANews, recent reports from Cyata have revealed multiple zero-day vulnerabilities in HashiCorp Vault, a widely used tool for wallet and key management in the cryptocurrency industry. These vulnerabilities affect critical areas such as authentication, identification, and authorization. Some of these flaws can bypass lock and multi-factor authentication protections, potentially allowing attackers to execute remote code, posing a significant threat to infrastructure security. The Cyata team has collaborated with HashiCorp to address these issues. 23pds, the Chief Information Security Officer at SlowMist Technology, advises relevant organizations to promptly upgrade to the latest version to mitigate potential risks.#HashiCorp #Vault #Vulnerabilities #Security #Cryptocurrency #ZeroDay #Authentication #Authorization #RemoteCode #InfrastructureSecurity #Upgrade
🚀 🔥 Binance Wallet Mitosis Booster Campaign Season 2 to Begin 🔥
#Binance #Wallet #Mitosis #Booster #Campaign #Season2 #Rewards #MITO #tokens #Airdrop #BNB #USDT #Vault
According to the announcement from Binance, the Binance Wallet Mitosis Booster Campaign Season 2 will soon begin.Activity Time: August 26, 2025, 00:00:00 to September 8, 2025, 23:59:59 (UTC)Total Rewards: $1,400,000 in MITO (Mitosis tokens)Reward Release Schedule: 7,000,000 MITO tokens will be distributed within 2 weeks after the campaign ends. If the total value of the tokens is less than $1,400,000, additional tokens will be airdropped along with the distribution.Campaign Eligibility: Open to all Binance Wallet (Keyless) users, with no Binance Alpha Points threshold. Participants from Mitosis Booster Campaign Season 1 who maintain their positions remain eligible for Season 2's rewards.Promotion I: Deposit a minimum of 0.03 BNB in Simple Yield Mitosis BNB Vault to share $500,000 of MITO rewards for 14 daysThe daily reward pool is $35,714.28.Promotion II: Deposit a minimum of 25 USDT in Simple Yield Mitosis USDT Vault to share $900,000 of MITO rewards for 14 daysThe daily reward pool is $64,285.71.For both promotions, individual daily rewards are calculated based on the proportion of their assets relative to the total amount in the Binance wallet.#Binance #Wallet #Mitosis #Booster #Campaign #Season2 #Rewards #MITO #tokens #Airdrop #BNB #USDT #Vault
🚀 Morpho USDC Vault Faces Challenges After Elixir Asset Removal
#Morpho #USDC #Vault #MEVCapital #Elixir #sdeUSD #baddebt #Ethereum #stablecoin #deUSD #compensation #AMM #Pendle #liquidity
According to Odaily, MEV Capital has provided an update on the operations of the Morpho USDC vault on the X platform. The Ethereum-based vault has removed the sdeUSD/USDC trading pair associated with Elixir, resulting in bad debt equivalent to approximately 3.6% of the vault's total locked value (TVL) at the time. The vault no longer holds any Elixir assets, while other markets and parameters remain unchanged. MEV Capital continues to collaborate with relevant parties to address issues faced by Elixir creditors.
Previously, Elixir announced the retirement of its stablecoin deUSD, declaring it to have no value. A compensation process using USDC has been initiated for holders of deUSD and its derivatives, such as sdeUSD. The affected parties include borrowers on lending platforms, AMM liquidity providers, and Pendle liquidity providers.#Morpho #USDC #Vault #MEVCapital #Elixir #sdeUSD #baddebt #Ethereum #stablecoin #deUSD #compensation #AMM #Pendle #liquidity
🚀 Aevo Investigates $2.7 Million Loss Due to Smart Contract Vulnerability
#Aevo #RibbonFinance #SmartContract #Vulnerability #BugBounty #WhiteHat #Security #Investigation #Cryptocurrency #Loss #Immunefi #Vault #Exchange #Staking #IncidentReport #FollowUpPlan #AEVO
According to Odaily, Aevo, formerly known as Ribbon Finance, reported that its Ribbon Legacy DOV vault was attacked due to a vulnerability in a smart contract update, resulting in a loss of approximately $2.7 million. The team has initiated an investigation to identify the root cause of the vulnerability and is collaborating with centralized exchanges and security partners to track and mark the stolen funds.
Aevo noted that although the attacker bypassed the existing Immunefi bug bounty mechanism, a white-hat negotiation solution remains open. The company emphasized that the incident did not affect Aevo's exchange or its staking users, and the platform continues to operate safely and normally.
For users who deposited in the Ribbon Legacy vault, Aevo is developing a follow-up plan and expects to release further updates within 24 hours. A comprehensive incident review report will be published later.#Aevo #RibbonFinance #SmartContract #Vulnerability #BugBounty #WhiteHat #Security #Investigation #Cryptocurrency #Loss #Immunefi #Vault #Exchange #Staking #IncidentReport #FollowUpPlan #AEVO