BlockThreat - Week 30, 2021
PolyYeld | Levyathan | MEV | Monero | REvil | StableMagnet |
Greeting, shadowy crypto super-coders! It’s always a good week when the good folks win. StableMagnet funds were recovered and REvil universal decryptor is being distributed to victim companies. In other news, a few DeFi projects were hacked with a very curious case of an MEV bot getting trapped and promptly relieved of ETH. Users should be cautious of malicious airdrops and an ongoing Android crypto-stealer malware campaign. Monero users are advised to wait at least an hour before using received funds, great smart contract analysis tools were released, and more events in the never boring world of blockchain security!
Let’s dive into the news, but first a special thank you to Oak Security which sponsored this week’s edition:
Oak Security is one of the few blockchain security companies that focus on third-generation blockchains and blockchain interoperability. Oak’s client base has a combined market cap of over $10 billion. The company specializes in Cosmos, Polkadot, and Flow security, and is the leading provider of CosmWasm security audits.
Ransomware is a scourge, but eliminating cryptocurrencies won’t make it go away by Philip Martin (Coinbase)
Reports of Stable Magnet scammers getting caught with funds getting redistributed back to their legitimate owners.
On July 30, 2021 Levyathan admin keys were stolen which resulted in a massive token mint. Following the mint, users attempted to call an emergency withdraw function which ended up crediting excessive amounts due to a separate bug.
On July 31, 2021 an MEV bot was exploited by baiting it to interact with a malicious token which stole 30 WETH ($76K).
Sablier patched a vulnerability which could allow an attacker to lock tokens in the contract after it was responsibly disclosed to the developer.
Vultur Android malware report by Threat Fabric targeting banking and crypto-wallet apps.
THORChain Heist: an Analysis of the Fund Flow by Breadcrumbs
THORChain Hack 2: Analysis of the Fund Flow by Breadcrumbs
AToM: Active Topology Monitoring for the Bitcoin Peer-to-Peer Network explores network attacks to uncover node connection topology.
Rectifying Administrated ERC20 Tokens introduces a new library to safely and responsibly manage superuser privileges in smart contracts.
Understanding delegatecall And How to Use It Safely by Nick Mudge
SolAST - Solidity 0.8.x AST parser and analyzer by Camden Smallwood
Help support BlockThreat!
Over the past two years, BlockThreat has gained hundreds of followers including exchanges, asset issuers, DeFi projects, engineers, investigators, law enforcement, and many others. This newsletter is a labor of love which takes many hours weekly to prepare. If you found BlockThreat valuable consider supporting its future growth:
Stay informed and see you in the next week’s edition!
- Peter Kacherginsky (iphelix)