1827 hack event(s)
Description of the event: The official TIME Magazine X account was allegedly compromised and posted about the TIME token.
Amount of loss: - Attack method: Account Compromise
Description of the event: The Tor Project X account has been compromised. The hacker is using the account to promote a fake token. Users should stay vigilant.
Amount of loss: - Attack method: Account Compromise
Description of the event: According to DL News, Dean Norris, the actor who played Hank Schrader in Breaking Bad, became the target of a hack on the X platform for the second time in six months. The attack started with a tweet from Norris' account announcing his decision to launch his own cryptocurrency called Dean, along with the contract address. The attackers even shared a manipulated photo of Norris holding a notebook with the token's symbol and date hastily written on it. Within hours, the meme coin's market value surged to $7 million, but after Norris confirmed the scam, its value plummeted by 90%.
Amount of loss: - Attack method: Account Compromise
Description of the event: The X account of former Brazilian President Jair Messias Bolsonaro was hacked and used to promote the token. The original post has since been deleted.
Amount of loss: - Attack method: Account Compromise
Description of the event: The AdsPower security team discovered a breach in which hackers distributed malicious code, resulting in the compromise of some third-party browser extensions.
Amount of loss: $ 4,700,000 Attack method: Supply Chain Attack
Description of the event: According to monitoring by the SlowMist security team, due to a lack of input validation in @odosprotocol, the vulnerability has been exploited across multiple chains, resulting in approximately $100,000 in losses. ODOS stated in a post that the attack exploited a vulnerability in its audited executor contract, allowing the theft of revenue stored within the contract but not affecting any user funds.
Amount of loss: $ 100,000 Attack method: Contract Vulnerability
Description of the event: The Singapore-based Phemex cryptocurrency exchange's hot wallets were hacked, resulting in a loss of approximately $70 million.
Amount of loss: $ 70,000,000 Attack method: Unknown
Description of the event: According to The Block, Nasdaq's official X account was hacked, and the attackers used it to promote fraudulent meme coins.
Amount of loss: - Attack method: Account Compromise
Description of the event: According to monitoring by the SlowMist security team, AST was allegedly attacked on BSC.
Amount of loss: $ 64,700 Attack method: Contract Vulnerability
Description of the event: MetaMask posted on X: “This morning, our co-founder Dan Finlay's Farcaster account was compromised and used to promote a memecoin. We are in touch with the Farcaster team to help investigate the incident."
Amount of loss: - Attack method: Account Compromise
Description of the event: A Twitter account named @TrumpDailyPosts, with over 1.3 million followers, not only automatically crossposts Donald Trump's Truth Social posts to Twitter but also shares Trump-related news and other tweets. This X account promoted at least four meme coins, with the posts being deleted within minutes after sharing, resulting in approximately $1.25 million in losses.
Amount of loss: $ 1,250,000 Attack method: Unknown
Description of the event: Stability AI's official X account posted information related to the STAI token contract, which appears to have been compromised. Be cautious to avoid falling victim to a scam.
Amount of loss: - Attack method: Account Compromise
Description of the event: The ZKsync team tweeted that the @ZKsyncIgnite account has been compromised. Do not interact with the account or click any links. Wait for the @zksync account to confirm when the account has been reclaimed.
Amount of loss: - Attack method: Account Compromise
Description of the event: According to Scam Sniffer's monitoring, the X account of the decentralized autonomous wireless network project DAWN was compromised and used to post phishing tweets.
Amount of loss: - Attack method: Account Compromise
Description of the event: The CAT Protocol within the Bitcoin ecosystem posted on Platform X, stating that they recently detected and mitigated an attempted attack on the CAT Protocol, confirming that no user funds were lost. On January 18, CAT Protocol updated on Platform X that the recent security incident had been amicably resolved and classified it as a white-hat action.
Amount of loss: - Attack method: Contract Vulnerability
Description of the event: The attacker exploited a vulnerability in The Idols project's smart contract to steal 97 stETH (approximately $324,000) from the project.
Amount of loss: $ 324,000 Attack method: Contract Vulnerability
Description of the event: Moonray's Discord was Compromised, and the attackers posted fraudulent airdrop messages. Users are advised to stay cautious and aware of potential risks.
Amount of loss: - Attack method: Account Compromise
Description of the event: On January 13, 2025, the SlowMist MistEye security monitoring system detected an attack on UniLend, resulting in a loss of ~$197K.
Amount of loss: $ 197,600 Attack method: Contract Vulnerability
Description of the event: According to Foresight News, the Foresight Ventures X account was hacked and is currently in the process of being recovered. Please do not click or trust any links or token information posted by this account.
Amount of loss: - Attack method: Account Compromise
Description of the event: The X account of Ryan Zarick, co-founder and CTO of LayerZero Labs, was briefly compromised and used to post a fraudulent airdrop claim along with a phishing link.
Amount of loss: - Attack method: Account Compromise