ChainCatcher news, OKLink released the July 2024 security report, stating that the cumulative losses from on-chain security incidents across the network amount to approximately $290 million. Losses due to private key leaks account for 88.31% of the total losses, phishing incidents account for 3.03%, REKT incidents account for 7.33%, and RugPull incidents account for 1.31%.On July 18, the private key of the WazirX exchange's multi-signature wallet was leaked, resulting in a loss of approximately $235 million, making it the largest security incident in July. On July 16, the LiFi Protocol cross-chain bridge aggregation protocol was attacked, leading to a loss of about $10 million. The attacker exploited a vulnerability that allowed arbitrary calls to steal assets authorized by users of this contract.In addition, there were a total of 14 incidents of scams and phishing on official social media, resulting in losses of approximately $3.89 million, a decrease of 81.34% compared to June. OKLink reminds users not to disclose your private keys or mnemonic phrases to anyone, not to click on unverified links, and to learn how to use Web3 on-chain tools to mitigate risks. This is an important line of defense in protecting yourself in the Web3 world.

ChainCatcher news, OKLink released the May 2024 security report, which indicates that the total losses from on-chain security incidents across the network in May amount to approximately $140 million. Among these, phishing incidents account for 60.08% of the losses, REKT incidents account for 16.89%, and RugPull incidents account for 1.37%.The largest security incident this month in terms of REKT losses was the attack on Sonne Finance, resulting in losses of approximately $20 million. The reason was that the protocol added a new VELO market through voting, but the project team failed to add initial funds to the VELO market in a timely manner, allowing hackers to exploit a classic rounding issue to manipulate the collateral rate of the VELO market for profit.In addition, there were a total of 27 incidents of scams and phishing attacks on official social media, primarily concentrated on X, Discord, and various phishing websites. The losses from security incidents this month increased by 27.27% compared to the previous month. OKLink reminds users to pay attention to the protection of personal information, never disclose your private keys or mnemonic phrases, and avoid storing them simply through screenshots. Furthermore, when transferring funds, be sure to carefully verify the recipient's address, and confirm its accuracy when copying directly from transaction records or chat logs. Security awareness is the strongest shield in the Web3 world.

According to ChainCatcher news, a security incident review analysis released by OKLink in March 2024 states that the total losses from security incidents across the network in March amounted to approximately $190 million. Among these, phishing incidents accounted for 16.72% of the losses, REKT incidents accounted for 25.11%, and RugPull incidents accounted for 9.64%.The largest REKT loss incident this month was the attack on the Curio Ecosystem, resulting in a loss of approximately $16 million; the largest RugPull loss incident was the Rugpull of the OrdiZK cross-chain bridging protocol, causing a loss of about $1.4 million.In addition, there were a total of 50 incidents of scams and phishing on official social media, mainly concentrated on platforms such as X, Discord, and various phishing websites. OKLink reminds users to be vigilant against scams and phishing incidents, to be cautious when clicking on unverified links, and to never disclose personal information such as private keys or seed phrases. Security awareness is the most important shield in the Web3 world.

ChainCatcher news, according to The block, Scam Sniffer statistics show that phishing incidents in the first two months of 2024 have caused losses of up to $104 million. This includes a loss of $57.7 million in January due to phishing attacks and a loss of $46.8 million in February.

According to ChainCatcher news, the security incident review analysis released by OKLink states that the total losses from security incidents across the network in January 2024 amount to approximately $73.25 million. Among these, phishing incidents account for 37.92% of the losses, REKT incidents account for 36.53%, and RugPull incidents account for 12.56%.The largest REKT loss incident this month was the attack on the DeFi protocol Abracadabra.money, resulting in a loss of approximately $6.5 million; the largest RugPull loss incident was XKING on the Artribum network, resulting in a loss of approximately $1.24 million.In addition, there were a total of 48 incidents of scams and phishing on official social media, mainly concentrated on channels like X and Discord. OKLink reminds users to be vigilant against scams and phishing incidents, especially when browsing X and project official websites, and to pay attention to authorization and transfer scenarios that appear after clicking links.

ChainCatcher news, the Web3 anti-fraud tool Scam Sniffer reported that in recent weeks, multiple users have been phished through Google search ads. Statistics show that these Google search ad phishing incidents have resulted in $4.16 million in stolen crypto assets, with over 3,000 victims, most of the thefts occurring in the past month.These malicious websites disguise themselves as projects like Zapper, Lido, Stargate, and Defillama. Victims enter the malicious sites and sign malicious signatures during the process, ultimately leading to the loss of assets in their wallets.By analyzing several larger fund aggregation addresses, some of these funds were deposited into SimpleSwap and Tornado.Cash, while others went directly to exchanges like KuCoin and Binance.Scam Sniffer's analysis indicates that the cost of most phishing ads is extremely low. These ads successfully deceived Google's ad review through various technical means and disguises, resulting in these ads being seen by consumers, which caused significant harm to users. (source link)

ChainCatcher news, according to CertiK monitoring, the EOA address 0x63fD7 associated with multiple phishing incidents has transferred 60 ETH (approximately $126,000) to Tornado Cash. (source link)