BlockThreat - Week 2, 2021
Ledger | Joker's Stash | DarkMarket | Sandbox
|Peter Kacherginsky||Jan 24|
In this week’s edition I will focus on the many ways cryptocurrencies are involved in facilitation of crime. Multiple sentences were announced to actors behind Ponzi and money laundering schemes, more Twitter scam campaigns, fake exchanges exit scamming, and crypto malware on the rise. On the bright side, two dark web markets have been shut down. Ledger has finally released a detailed post-mortem more than 6 months after the incident. Check out this week’s Media section for a few excellent talks and panels published this week.
Joker’s Stash dark web marketplace shuts down. Administrator’s of the site were big advocates of cryptocurrencies to store their ill-gotten gains.
DarkMarket illegal marketplace has been taken down by an international law enforcement group including Europol, FBI, NCA, BKA, and others. More than 20 servers in Moldova and Ukraine were seized containing a treasure trove of data.
RG Coins exchange founder Rossen Iossifov was sentenced to 10 years for helping launder stolen crypto in support of the fraudulent online auction.
Russian law enforcement reports a new trend of contract killers accepting cryptocurrency payments and using mixing services to obscure payments.
An increase in verified Twitter account hijacks results in $580K worth of BTC stolen in just one week.
Ledger published a post-mortem report detailing the scope of the customer database hack in 2020. The report reveal that the original July, 2020 hack resulted in the theft of 1M+ email addresses. An addition incident in September, 2020 resulted in the leak of 292K customer details including complete PII data such as home addresses, phone numbers, names, and email addresses. Ledger has also started a new bounty program worth 10BTC for any information that leads to the arrest of perpetrators behind these hacks.
A multi-collateral liquidation bug was fixed in Synthetix on January 6th which could have triggered excess loan liquidations.
A potential vulnerability was reported in Venus DeFi project hosted on Binance Smart Chain which resulted in $88M worth of ETH and BTC locked up.
Tencent Security Team reports on the mining trojan called SupermanMiner which targets weak Redis servers.
White Hat Panel: DeFi Exploits featuring samczsun (Paradigm), maurelian (Optimism), Emiliano Bonassi (Marquet Exchange), Martín Abbatemarco (Open Zeppelin) Fubuloubu (Yearn.finance), and Mariano Conti (fmr. MakerDAO).
Security By Design & Smart Contract Audits by Shayan Eskandari
Atlas VPN report on blockchain incidents notes 122 attacks resulting in $3.8B loss throughout 2020.
TX Spammer tools to enable the semi-reproducible growth of a large and complex chain over RPC, for testing and benchmarking purposes.
In other news, Bitcoin mining is now blamed as a trojan horse to attack on electric grids in Iran. Who needs Stuxnet when you can just drop a few mining rigs! Oh and if you a user of a certain web enabled chastity device you may need 0.02 BTC to regain access to you know what.
Help support BlockThreat!
Over the past two years, BlockThreat has gained hundreds of followers including exchanges, asset issuers, DeFi projects, engineers, investigators, law enforcement, and many others. This newsletter is a labor of love which takes many hours weekly to prepare. If you found BlockThreat valuable consider supporting its future growth:
1) Make an individual contribution.
2) Sponsor an edition where you can place an advertisement.
3) Share your job postings in the next edition.
4) Share the newsletter with a friend or a colleague.
Stay informed, stay healthy, and see you next week!
- Peter Kacherginsky (iphelix)