Cosine: Ledger codebase attacker linked to Angel Drainer

On December 15th, SlowMist founder Yu Xian posted on social media that the group that poisoned Ledger Connect Kit yesterday is related to Angel Drainer (at least using this phishing tool). Through feature analysis with Scam Sniffer, they discovered thousands of phishing websites and synchronized them to the MetaMask eth-phishing-detect repository.
In addition, Angel Drainer has also started using smart contracts to manage the access domain names of malicious JS files.

Ledger

Comments

All Comments

Recommended for you

Paradigm ·

Reth Execution Extensions

Reth is an all-in-one toolkit for building high performance and customizable nodes. We recently published our performance roadmap for improving Reth’s performance >100x, and Reth AlphaNet, our testnet rollup for pushing Reth’s modularity and extensibility to the limits.
Cointime精选 ·

Measuring Exchange Quality And ‘Fake Volume’

A framework to assess the quality of centralized exchanges (CEX's)
Hundre Finance attackers have withdrawn 162.2 ETH worth of crypto assets from Curve

According to PeckShield monitoring, the attacker of Hundre Finance withdrew 784,000 3Crv from Curve and exchanged it for 273 ETH. In addition, they also exchanged 305.6 WOO, 39 PAXG, 200,000 FRAX, and 100,000 DAI, totaling 162.2 ETH. The attacker then bridged 1,034 ETH (2.17 million USD), 842.8K DAI, 1.11 million USDT, 1.27 million USDC, and 457.3 FRAX from Optimism to Ethereum. They also exchanged a total of 480,000 USDC for 142.6 WETH, 306 WOO, and 39 PAXG. They also exchanged 1.11 million USDT for 500.3 thousand USD worth of DAI and 613.8 thousand USD worth of FRAX. Additionally, on April 15, 2023, approximately 786,000 USD worth of USDC was added to Curve3Pool.
GNUS on Fantom was attacked, with a loss of about $1.27 million

According to Beosin's monitoring, GNUS on Fantom was attacked, resulting in a loss of approximately $1.27 million. GNUS stated on the X platform that due to recent vulnerabilities, hackers were able to mint fake GNUS tokens on Fantom, transfer them to Ethereum and Polygon through the Axelar Bridge, and sell them to existing liquidity pools. We will take a snapshot of the blocks before the exploit. To ensure fairness, please do not purchase GNUS tokens after the exploit, as we will issue new tokens.
Cointime精选 ·

BitVM – The first real path to Bitcoin Layer-2s

The recent approval of Bitcoin spot ETFs and bullish BTC price action have become a catalyst for heightened interest in the Bitcoin ecosystem. A myriad of projects aiming to improve Bitcoin’s scalability have been introduced in recent times, the most exciting of them being BitVM.
SlowMist: The total loss from security incidents last week (April 28-May 4, 2024) exceeded US$71.4 million

According to the weekly security report (April 28 - May 4, 2024) released by SlowMist, the total loss this week exceeded $71,399,000. An incident this week resulted in losses rising from the nine-digit range to the astonishing ten-digit range. Surprisingly, this was not due to complex technical flaws or sophisticated phishing scams, but a simple error that could have been easily avoided by implementing a whitelist. Multiple security incidents include:
cointelegraph ·

Sui Network addresses claims about its token supply

Sui maintains that its tokenomics are sound and that it uses reputable third parties to handle token storage.
cointelegraph ·

Is Bitcoin price going to crash again?

Strong technical resistance levels and a high number of profitable traders pose the risk of modest pullbacks in the Bitcoin market.
cointelegraph ·

What are tokenized commodities?

Tokenized commodities, which include energy resources, agricultural products, precious metals and other tangible things, are digital representations of real-world assets.
cointelegraph ·

Bitcoin opens $63K futures gap as thin liquidity threatens BTC price

Bitcoin market participants are doubting the staying power of the ongoing BTC price relief bounce.