Scan to download
Home
Article
Flash
Hot Projects
Specials
Columns
ETF
Knowledge Base
Calendar
Activity
Tools
DeInsight 2024

November Web3 Security Incident Review: Total Loss Approximately $86.24 Million

Slow Fog Security Team
2024-12-02 22:39:18
Collection
In November 2024, there were 21 hacking incidents, resulting in losses of approximately $76.86 million, with $25.5 million recovered. The causes of the incidents included contract vulnerabilities, account hacks, and price manipulation, among others. Additionally, there were 9,208 victims of phishing incidents this month, with losses amounting to $9.38 million.

Author: SlowMist Security Team

Overview

In November 2024, the total loss from Web3 security incidents was approximately $86.24 million. Among these, according to the SlowMist Blockchain Hacked Archive (https://hacked.slowmist.io), there were 21 hacking incidents resulting in losses of about $76.86 million, with $25.5 million recovered. The causes of these incidents included contract vulnerabilities, account hacks, and price manipulation. Additionally, according to the Web3 anti-fraud platform Scam Sniffer, there were 9,208 phishing incident victims this month, with losses amounting to $9.38 million.

(https://dune.com/scam-sniffer/november-scam-sniffer-2024-phishing-report)

Major Security Incidents

MetaWin

On November 4, 2024, according to on-chain detective ZachXBT, the crypto gambling platform MetaWin was allegedly attacked, resulting in the theft of over $4 million on the Ethereum and Solana chains. MetaWin CEO Skel stated that the attacker exploited the platform's frictionless withdrawal system to breach MetaWin's hot wallet.

DeltaPrime

On November 11, 2024, the DeFi protocol DeltaPrime was attacked on Avalanche and Arbitrum, with initial loss estimates of $4.75 million. The root cause of this attack was the lack of input validation in the reward claiming feature.

(https://x.com/DeltaPrimeDefi/status/1855899502944903195)

Thala

On November 15, 2024, the Aptos-based DeFi project Thala was attacked, resulting in the theft of $25.5 million, with the attacker exploiting a vulnerability in its smart contract. The project team suspended the related smart contracts and froze some tokens, ultimately successfully freezing about $11.5 million in assets. After collaborating with law enforcement and several blockchain security teams, the project team successfully negotiated to recover the assets, allowing the attacker to keep $300,000 as a bounty.

(https://x.com/thalalabs/status/1857703541089120541?s=46\&t=bcMyidYO0QkS5ajIW9CBdg)

DEXX

On November 16, 2024, multiple users' funds on the on-chain trading terminal DEXX were stolen. According to the SlowMist Security Team, the losses from this incident have reached $21 million. Currently, the SlowMist Security Team is assisting DEXX officials and partners in ongoing analysis. On November 28, the SlowMist Security Team announced that they had collected 8,612 DEXX attacker addresses on the Solana chain, with EVM chain attacker addresses to be disclosed after the cleaning statistics are completed.

(https://x.com/MistTrack_io/status/1862134946090881368)

Polter Finance

On November 17, 2024, the Fantom-based DeFi project Polter Finance was attacked, resulting in losses of approximately $12 million. The attacker drained the BOO token reserves through a flash loan, artificially inflating the calculated price of BOO. This allowed them to borrow tokens far exceeding the actual value of the collateral, resulting in substantial profits. The platform's founder stated that they have reported to the Singapore authorities and attempted to contact the attacker through on-chain messages to negotiate the return of funds but have not yet received a response.

(https://x.com/polterfinance/status/1857971122043551898)

Feature Analysis and Security Recommendations

The number of security incidents and the scale of losses this month have significantly decreased compared to last month, reflecting ongoing improvements in security measures within the industry. Notably, contract vulnerabilities remain the highest proportion in terms of both the distribution of attack causes and the scale of losses. The seven incidents of contract vulnerability exploitation this month resulted in losses of approximately $30 million, accounting for 39% of total losses. The SlowMist Security Team advises project teams to remain vigilant and conduct regular comprehensive security audits, track and address new security threats and vulnerabilities to protect project and asset security.

Additionally, the SlowMist Security Team noted that there were real cases of AI poisoning attacks targeting the crypto industry this month. This phenomenon indicates that the target range of supply chain attacks is further expanding. Some developers, in pursuit of efficiency, may overly rely on AI-generated code while neglecting the review of code security. Therefore, the SlowMist Security Team reminds developers and project teams not to blindly trust the output results when using AI-generated code. All code should undergo rigorous security audits and testing before being put into actual use to prevent security risks and protect the project and users' assets. Meanwhile, project teams should strengthen overall supply chain security management, conduct comprehensive assessments of third-party tools and services, and continuously monitor security dynamics in related fields to respond promptly to new threats.

Web3 attack incidents and security accidents

Web3 attack incidents and security accidents

This special collection focuses on attack incidents and security accidents in the Web3 field.
Topic or theme
Related tags
Web3 security incidents MetaWin DeltaPrime Thala DEXX Polter Finance
ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.
Slow Fog Security Team
Slow Fog Security Team
July Web3 Security Incident Review: Total Loss Approximately $279 Million
July Web3 Security Incident Review: Total Loss Approximately $279 Million
Slow Fog: UwU Lend Hacked Analysis
Slow Fog: UwU Lend Hacked Analysis
Related tags
Web3 security incidents MetaWin DeltaPrime Thala DEXX Polter Finance
Related reading
Weekly Report | MicroStrategy increases its holdings by approximately $2.03 billion with 27,200 BTC; the official X account of the Department of Government Efficiency (D.O.G.E) led by Musk is now online
Weekly Report | MicroStrategy increases its holdings by approximately $2.03 billion with 27,200 BTC; the official X account of the Department of Government Efficiency (D.O.G.E) led by Musk is now online
DEXX Exclusive Insider: The boss was born in 1994 and only has a junior high school education?
DEXX Exclusive Insider: The boss was born in 1994 and only has a junior high school education?
Whether it's insider theft or hacking, tracing the DEXX theft incident
Whether it's insider theft or hacking, tracing the DEXX theft incident
The meme community was "attacked," and the loss from the DEXX theft may reach tens of millions of dollars
The meme community was "attacked," and the loss from the DEXX theft may reach tens of millions of dollars
Copyright © 2023
About Us
BitouchNews
Apply for a column
Disclaimer
RSS LINK
Recruitment
Qiong ICP No. 2021009392
Qiong ICP No. 2021009392
ChainCatcher Building the Web3 world with innovators
Open the app