After weeks of non-stop hacks, we finally got a bit of a break where we can catch up on fun research papers and a fun DeFi security workshop from Binance.

Let’s dive into the news, but first a special thanks to our sponsors at Trail of Bits:

News

• Russian-language hacker forums created a $100K+ prize pool for research papers on ways to attack cryptocurrency assets, exchanges, and related tech.

• US Government prioritizes blockchain analytics and ransomware investigations to combat future attacks on critical infrastructure such as the Colonial Pipeline and JBS hacks.

Hacks

• On June 3, 2021 Sia reported a persistent DDoS attack targeting storage providers resulting in 30% of them losing connections to the network.

• On June 3, 2021 PancakeHunny, a Pancake Bunny clone on BSC, reward mechanism was exploited using a flashloan which resulted in the loss of $86K (216 WBNB tokens).

Malware

• TeamTNT report by Palo Alto’s Unit 42 discussing evolving tactics targeting cloud infrastructure to install crypto miners.

• Extended Clipper malware advertised on darknet forums now targeting multiple cryptocurrency wallets.

Media

Security First in DeFi workshop sponsored by Binance:

1. Understand the security risk of Blockchain by Certik Team

2. Incident Response Process（During/After hacks) by Merkle Science

3. Project Panel: How projects respond to risks and how general users can protect themself? with Cream, dForce, Autofarm, Ogle

4. Best practices for working with data/oracle in a smart contract by Chainlink Team

5. Proactive defense for DeFi protocols: Security as a never ending process by Immunefi team

Research

• In-depth understanding of reentry attack vulnerabilities by Knownsec Blockchain Lab

• SoK: Oracles from the Ground Truth to Market Manipulation

• Topological Anomaly Detection in Dynamic Multilayer Blockchain Networks such as Ethereum to detect financial crime.

Stay informed, stay healthy, and see you in the next week’s edition!

- Peter Kacherginsky (iphelix)