ChainCatcher news, according to Bitcoin.com, Moroccan authorities have arrested and detained five individuals suspected of participating in cryptocurrency fraud activities. The police also recovered some funds allegedly related to the scheme, as well as mobile devices used in the crime.The unnamed suspects, aged between 24 and 48, are accused of sending phishing emails to foreign citizens, aiming to extract funds from the victims' cryptocurrency wallets. It is alleged that the stolen funds were subsequently used for personal purposes.Moroccan authorities arrested the suspects after receiving reports through international law enforcement cooperation channels.

ChainCatcher message, according to GoPlus security monitoring, has currently discovered phishing scams related to rights protection and compensation, such as "Rights Protection Community," "DEXX Theft Registration," and "DEXX Compensation," specifically targeting users who have been stolen from DEXX. Users should be cautious in identifying these and must not upload private keys/mnemonic phrases or connect wallets for confirmation to avoid further harm.

ChainCatcher message, Scam Sniffer posted on platform X that in October, approximately 12,000 victims lost 20.2 million dollars due to cryptocurrency phishing scams. Compared to September, the stolen funds decreased by 56%, while the number of victims increased by 20%.

ChainCatcher news, OKLink released the October 2024 security monthly report, stating that the cumulative losses from on-chain security incidents across the network amount to approximately $181 million. Losses from phishing scams account for 23.94% of the total losses, totaling about $43.53 million. REKT incidents account for 35.92% of the losses, totaling about $65.32 million.On October 11, a user on Blast lost 15,079 fwDETH after signing a phishing "permit" signature, worth approximately $35 million. On October 16, multiple multi-signature wallets of Radiant Capital were attacked, with the attacker injecting malware into hardware wallets, compromising several developers' hardware wallets. The attack process was so covert that the front end of the Gnosis Safe multi-signature wallet displayed legitimate transaction data, while the back end was simultaneously signing and executing tampered transactions, ultimately leading to losses of about $58 million.In this month's security incidents, the methods of attack are constantly evolving. OKLink reminds users to be particularly vigilant against phishing attacks involving "permit" and "approve" authorizations on social platforms, as these types of attacks have occurred frequently this month. When performing on-chain operations, it is essential to carefully verify the receiving address and not to easily trust the addresses in transaction records, as they may have been replaced by hackers. For multi-signature wallets, it is crucial to strictly protect the security of private keys, and when handling emails related to crypto assets, carefully verify the sender's identity and the authenticity of the content, and learn to use Web3 on-chain tools to mitigate risks.

ChainCatcher news, according to Scam Sniffer monitoring, in September, over 10,000 addresses lost a total of approximately 46 million dollars due to phishing scams.In the third quarter of 2024, the total losses from phishing amounted to 127 million dollars, with an average of 11,000 victims per month. Two major victims accounted for 87 million dollars.

ChainCatcher news, OKLink released the Q3 2024 Security Report, which states that the cumulative losses from on-chain security incidents across the network amount to approximately $743 million. In Q3, there were 110 major attack incidents, including a total of 61 fraud and phishing incidents, resulting in losses of $340 million, accounting for 46.03%. The losses from REKT incidents were approximately $80.42 million, accounting for 10.78%, while losses from RugPull incidents were about $4.61 million, accounting for 0.62%.On August 19, a potential victim reportedly lost 4,064 BTC due to a phishing attack, valued at approximately $238 million. This substantial amount was quickly transferred through multiple platforms, including ThorChain, eXch, Kucoin, ChangeNow, Railgun, and Avalanche Bridge, in a complex operation after being stolen.Additionally, losses due to private key leaks amounted to approximately $268 million, accounting for 36.06%. OKLink reminds users to enhance their security awareness and not to trust any unverified signature requests, especially when authorizing "Permit" or involving fund transfers; it is essential to verify the authenticity of the signatures. It is recommended to regularly check and revoke contract authorizations that are no longer in use to prevent malicious contract abuse. At the same time, securely store your private keys and mnemonic phrases, never disclose them to anyone, and avoid saving them through screenshots or on insecure devices. Security awareness is your strongest shield in the Web3 world.

ChainCatcher news, according to Beosin Alert monitoring and early warning, as of September 25, the total loss in the Web3 sector due to hacker attacks, phishing scams, and project Rug Pulls in Q3 2024 has reached $730 million. Among them, there were 23 major attack incidents, with a total loss of approximately $430 million; 3 project Rug Pull incidents, with a total loss of about $4.24 million; and total losses from phishing scams amounting to approximately $295 million.In terms of the types of attacked projects, the highest losses were incurred by CEX, with 3 attacks on CEX causing approximately $297 million in losses, accounting for about 40.6% of all attack losses.In terms of losses by chain, Ethereum remains the chain with the highest loss amount and the most attack incidents. 21 attacks and phishing incidents on Ethereum caused losses of $348 million, accounting for about 47.6% of the total losses.Regarding attack methods, there were 5 private key leakage incidents in Q3, resulting in losses of $305 million, accounting for about 41.7% of the total attack losses, making it the most prevalent type of attack.In terms of the flow of funds, only about $16.9 million of the stolen funds have been frozen or recovered. The vast majority (approximately 78.9%) of the stolen funds are still stored in the attackers' on-chain addresses.Compared to the same period in 2023, the total losses due to hacker attacks, phishing scams, and project Rug Pulls in Q3 2024 have slightly decreased to $730 million (the figure for Q3 2023 was $889 million). Factors such as the decline in cryptocurrency prices in Q3 2024 have had some impact on the reduction of the total amount, but overall, the situation in the Web3 security sector remains grim. Among the more than twenty attack incidents in Q3, 18 were still due to contract vulnerabilities, suggesting that project parties should seek professional security companies for audits before going live.

ChainCatcher news, according to Bitcoin.com, the Maryland police have issued a warning about a phishing scam targeting Gmail users that is spreading. Scammers are extorting Bitcoin by sending Google Maps photos containing the victim's address and threatening to disclose false damaging information.The police explained that scammers typically use blackmail tactics, claiming to possess damaging information about the victim and threatening to make this information public if Bitcoin is not paid. Scammers usually offer two options: pay the ransom or face the risk of information disclosure.Similar scams have also occurred in places like California and Nevada.

ChainCatcher news, according to PeckShield monitoring, the phishing scam address marked as "Fake_Phishing442897" has stolen 55.4 million DAI from whale accounts, exchanged 250,000 DAI for 102,600 ETH, and transferred it to a new address starting with 0x2751. This address currently holds approximately 40.5 million dollars worth of cryptocurrency, including about 15,180 ETH, approximately 2.8 million DAI, and about 327.3 stETH.

ChainCatcher news, OKLink released the August 2024 security monthly report, indicating that the cumulative losses from on-chain security incidents across the network amount to approximately $316 million. Phishing scams alone account for 93.37% of the total losses, totaling about $296 million, while REKT incidents account for 5.97% and RugPull incidents account for 0.19%.On August 19, a suspicious transfer involving 4,064 BTC occurred, amounting to approximately $238 million, and the funds were quickly transferred to multiple accounts including ThorChain and eXch. As of August 27, $205,000 has been recovered.OKLink reminds users to pay attention to protecting personal information and not to disclose your private keys or mnemonic phrases to anyone; phishing tweets may contain traps, and do not click on unverified links. Learn to use Web3 on-chain tools to mitigate risks, establish your own security operation procedures, and strictly adhere to them to ensure the safety of your funds.

ChainCatcher message, according to Scam Sniffer monitoring, about 46 minutes ago, a phishing scammer transferred 1884 ETH (approximately 5.04 million USD) of stolen funds to a new address.

ChainCatcher news, according to monitoring by blockchain security audit company Beosin Alert, shows that in July 2024, the loss amount from various security incidents significantly increased compared to June. In July 2024, there were over 20 typical security incidents, with total losses from hacker attacks, phishing scams, and Rug Pulls reaching $286 million, an increase of approximately 56.3% compared to June.Among these, attack incidents accounted for about $271 million, an increase of approximately 92.2%; phishing scam incidents accounted for about $12.1 million, a decrease of approximately 67.6%; and Rug Pull incidents accounted for about $3.58 million, a decrease of approximately 13.1%.The largest hacking incident in July came from the Indian exchange WazirX, with losses of about $230 million, accounting for 85% of the total amount from attack incidents that month. The second largest attack incident was LI.FI, which lost about $11.6 million due to a contract vulnerability. This month also saw multiple phishing scams and rug pull incidents exceeding one million dollars, and users need to remain vigilant.

ChainCatcher message, according to Scam Sniffer monitoring, 5 hours ago, a phishing scam address related to Inferno Drainer transferred 365 ETH (1.12 million USD) to a new address.

ChainCatcher news, the Ethereum Foundation's email account was hacked, sending phishing emails to 35,794 people and recording the email addresses of 81 subscribers. The email falsely claimed that the foundation was collaborating with LidoDAO to offer a 6.8% staking yield on Ethereum. If users clicked the link in the email and approved the transaction, their wallets would be drained.The foundation quickly stopped the malicious emails from being sent, closed the attack vector, and alerted the relevant parties. Investigations showed that while the attackers obtained some new email addresses, no victims lost funds in this attack.Previous news, Ethereum core developers: The email list provider of the Ethereum Foundation is suspected to have been compromised.

ChainCatcher news, OKLink released the June 2024 security monthly report, which indicates that the cumulative losses from on-chain security incidents across the network amount to approximately $210 million. Among these, phishing incidents account for 9.91% of the losses, REKT incidents account for 20.83%, and RugPull incidents account for 3.53%.The largest security incident in terms of REKT losses occurred on June 10, when UwU Lend was attacked, resulting in losses of approximately $22.7 million. The attacker exploited a vulnerability in the contract related to oracle price manipulation, causing losses of about $19 million, and on June 13, they attacked again by taking advantage of the project's governance operation errors, profiting $3.7 million.In addition, there were a total of 31 incidents of scams and phishing on official social media, primarily concentrated on X, Discord, and various phishing websites. OKLink reminds users not to click on unverified links, not to disclose your private keys or seed phrases to anyone, and to maintain a skeptical attitude towards projects that promise abnormally high returns. Before investing, be sure to conduct thorough research on the project and the team. Security awareness is your strongest shield in the Web3 world.

ChainCatcher news, according to Scam Sniffer monitoring, a victim lost 2.41 million dollars due to a phishing scam.

ChainCatcher message, Slow Mist founder Yuxian posted on social media, "This real case related to TON phishing can be referenced as shown in the picture, the phishing comment states Funds will be returned after wallet confirmation, in order to confuse users. But if confirmed, the related assets will be gone, including this Anonymous Telegram Number."

ChainCatcher message, according to Scam Sniffer monitoring, a Pendle user lost 1.4 million dollars 47 minutes ago due to signing a phishing signature.