BlockThreat - Week 24, 2021

Ledger | Clop | Alchemix | Visor | Impossible | BeetsFarm | Iron Finance

Never a dull week in blockchain security! Scammers have really stepped up their game by physically mailing backdoored Ledger hardware wallets, NFT creators targeted with cryptostealer malware, multiple DeFi projects compromised due to design and operational weaknesses, and of course a massive bank run on a stablecoin with weak bad stabilization design wiped out $2B in value. On the bright side, Ukranian cyber police locked up six actors associated with Clop ransomware and we have a couple of great DeFi security panels and workshops featured in this week’s edition.

Let’s dive into the news, but first a special thank you to all of the Gitcoin Grant supporters as well as Trail of Bits who sponsored this week’s edition:



News

Media

Scams

Phishing

Hacks

Vulnerabilities

Other Incidents

Research


Help support BlockThreat!

Over the past two years, BlockThreat has gained hundreds of followers including exchanges, asset issuers, DeFi projects, engineers, investigators, law enforcement, and many others. This newsletter is a labor of love which takes many hours weekly to prepare. If you found BlockThreat valuable consider supporting its future growth:

1) Make an individual contribution.
2) Sponsor an edition where you can place an advertisement.
3) Share your job postings in the next edition.
4) Share the newsletter with a friend or a colleague.


Stay informed and see you in the next week’s edition!

- Peter Kacherginsky (iphelix)