806 hack event(s)
Description of the event: An attacker with a stolen device can extract the seed from the device. It takes less than 5 minutes and the necessary materials cost around 100$. This vulnerability affects Trezor One, Trezor T, Keepkey and all other Trezor clones. Unfortunately, this vulnerability cannot be patched.
Amount of loss: - Attack method: Extracting Seed
Description of the event: On July 8, the Polish-based exchange Bitmarket abruptly shut down due to liquidity issues. The shutdown allegedly cost users a total of 2300 bitcoin (approximately $23 million) according to Polish prosecutors. The exchange’s official site was replaced with the following message: “We regret to inform you that due to the loss of liquidity, from 08/07/2019, Bitmarket.pl/net was forced to cease its operations. We will inform you about further steps.” Two weeks later, one of the exchange's co-owners was found shot dead
Amount of loss: 2,300 BTC Attack method: Insufficient liquidity
Description of the event: Soxex exchange has been exposed to abscond with the funds. At present, the website of the exchange has been unable to open, and hundreds of millions of funds of investors have been swept away, involving BTC, ETH, HT, OKB and other mainstream currencies. Over 1 million USDT has been flowing into other exchanges.
Amount of loss: - Attack method: Scam
Description of the event: The hackers launched an attack by rolling back the transaction, and so far, the attack has been profitable.
Amount of loss: - Attack method: Roll back attack
Description of the event: The hacker launched a continuous attack on the HiGold Game and realized the profit.
Amount of loss: - Attack method: Random number attack
Description of the event: The attacker launched multiple roll back attacks on the DApp contract address beginning with TLGUt5. So far, it has gained 45,200 TRX, and the contract balance of the attacked contract is almost zero.
Amount of loss: 45,200 TRX Attack method: Roll back attack
Description of the event: The mainnet of Waltonchain was suffered coordinated attack, and the problem has been solved through the upgrade of the mainnet.
Amount of loss: - Attack method: Coordinated Attack
Description of the event: At 1:00 am on June 30, the App of Torrent super community was shut down. All of the wallet assets were moved out two weeks ago, and investors are currently unable to cash out.
Amount of loss: - Attack method: Scam
Description of the event: PlusToken collapsed. Currently, PlusToken wallets can only be transferred in and cannot be withdrawn. Some investors said that 35 hours after the withdrawal of the coin, the account has not yet arrived. It is suspected that the reason given by the PlusToken promotion team is that the recent Bitcoin network transactions are busy, and the time for confirmation of the account has become longer, so you need to wait patiently. The largest MLM project in the currency circle has since collapsed.
Amount of loss: 2,900,000,000 Attack method: Ponzi
Description of the event: Hackers have made a profit of 50,845 TRX by creating multiple contracts to launch a trade rollback attack on SPOKpark, a Tron DApp game. The SPOKpark website is no longer accessible.
Amount of loss: 50,845 TRX Attack method: Roll back attack
Description of the event: At approximately 1am June 27 (GMT+8), a hacker exploited a vulnerability in Bitrue's Risk Control team's 2nd review process to access the personal funds of about 90 Bitrue users. The hacker used what they learned from this breach to then access the Bitrue hot wallet and move 9.3 million XRP and 2.5 million ADA to different exchanges.
Amount of loss: 9,300,000 XRP + 2,500,000 ADA Attack method: Stolen hot wallet
Description of the event: According to Forbes on June 27, Bitsane, an Irish cryptocurrency exchange, disappeared without a trace last week, had lied to as many as 246000 users.
Amount of loss: - Attack method: Scam
Description of the event: Synthetix, a synthetic asset issuance platform built on Ethereum, experienced an oracle attack which netted the attacker over 37 million sETH, according to Etherscan. However, the true dollar value is difficult to calculate at this time given the relative illiquidity of sETH on secondary markets.
Amount of loss: 35,759,524 sETH Attack method: Database attack
Description of the event: EOS contract yizeslotsbet suffers transfer error prompt, the attacker has already obtained 1,0000 FB token.
Amount of loss: 10,000 FB Attack method: Transfer error prompt
Description of the event: Continuous attack by hackers to SKR EOS, earning thousands of EOS.
Amount of loss: - Attack method: Random number attack
Description of the event: The hacker has gained 27,000 TRX by launching a trade rollback attack on the DappRoulette contract with a self-created contract.
Amount of loss: 27,000 TRX Attack method: Roll back attack
Description of the event: MGC wallet is exposed to carry user assets disappear, users' digital assets are aggregated to 0x4f9cxx, 0x2b29xx beginning two addresses in a short time.
Amount of loss: - Attack method: Scam
Description of the event: The 600 million BETX tokens held by BETX managers were stolen by hacker and sold on the Newdex exchange. Preliminary analysis shows that the cause of this attack is that the private key of BETX project is stolen, and the hacker gains the owner privilege and transfers all the existing tokens of the contract. The selloff caused the BETX token to fluctuate sharply and close to zero.
Amount of loss: 600,000,000 BETX Attack method: The private key is stolen
Description of the event: The TokenStore wallet was exposed as a "runaway", which swept away billions of investors' money, involving BTC, XRP, ETH and other mainstream currencies.
Amount of loss: 1,000,000,000 CNY Attack method: Scam
Description of the event: Polish cryptocurrency exchange Coinroom suddenly shut down its service in April, suspected of defrauding customers and running away with funds. Although the exact amount involved in the fraud is unclear.
Amount of loss: - Attack method: Scam