ChainCatcher message, according to Immunefi's 2024 report, although interest in Ethereum among respondents has declined compared to 2023, it remains the preferred blockchain for crypto white hat hackers. Additionally, Polygon, Arbitrum, Optimism, and Solana have also gained attention.Specifically, 87% of respondents are attracted to Ethereum, down from 94% in 2023. Interest in Polygon has risen to 59%, ranking it second, followed by Arbitrum (47%) and Optimism (45%). Interest in Solana has also increased from 32% in 2023 to 42% in 2024, ranking fifth.

ChainCatcher message, Ronin stated on platform X that white hat hackers have returned approximately 10 million USD worth of ETH, and USDC is expected to be returned later.The bug bounty program will reward the white hats with a bounty of 500,000 USD.The Ronin bridge will undergo an audit before reopening, and updates will be provided as the audit progresses.

ChainCatcher news, Ronin posted on social media that earlier today, white hats notified Ronin that there might be a vulnerability in the Ronin bridge. After verifying the report, the bridge was paused about 40 minutes after the first on-chain operation was detected. The attacker extracted approximately 4000 ETH and 2 million USDC, worth about 12 million dollars, which is the maximum amount of ETH and USDC that can be withdrawn in a single transaction from the bridge. The bridging limit is an important safeguard to enhance the security of large fund withdrawals and effectively prevent further damage caused by this vulnerability.Ronin stated that due to an issue introduced during the bridge upgrade after the governance process was deployed, the cross-chain bridge misunderstood the voting threshold required by the bridging operators to withdraw funds. Efforts are currently underway to find a solution to the root cause, and the bridge update will undergo strict review before being decided upon by a vote from the bridging operators. Negotiations are ongoing with these seemingly white hat actors, who have responded in good faith. Regardless of the outcome of the negotiations, all user funds are safe, and any shortfall will be re-deposited when the bridge reopens. A post-incident analysis will be shared next week, detailing the technical aspects and planned measures to prevent similar incidents in the future.

ChainCatcher news, Indian crypto trading platform WazirX stated on the X platform that, based on feedback from on-chain detective ZachXBT, it has increased the white hat bounty to 10% of the recovered funds, and will also invite white hat hackers, blockchain forensics experts, and cybersecurity professionals from around the world to join this mission.

ChainCatcher message, the Indian cryptocurrency exchange WazirX, which was previously hacked, announced the details of a bounty program on the X platform to seek community assistance in recovering stolen assets.Bounty Program 1: Track and Freeze ------ Identify, track, and provide actionable intelligence to freeze stolen funds, with a reward of up to $10,000 in USDT.Bounty Program 2: White Hat Recovery ------ Offer 5% of the recovery amount as a white hat reward.It is reported that the bounty program will last for three months from the date of the announcement, but may be modified based on requests and results, either extended or shortened, without further notice to participants.

ChainCatcher message, Velocore stated on X that after the recent exploitation incident, most of Velocore's functionalities have been disabled to prevent further losses, leaving only the withdrawal function. The front-end exchange was unable to correct the imbalance and de-pegging of the stable pool through arbitrage, resulting in additional losses for LPs.On the Linea chain, since the admin privileges of the Diamond Proxy contract have been revoked, we can only change the exchange rate to zero and cannot make fundamental updates. This requires us to prevent further potential damage and provide a unified withdrawal method for all users. Upon re-examining the contract, we discovered another vulnerability that could lead to the theft of all assets. To mitigate this risk, we conducted a white-hat operation and securely deposited the assets into a separate Safe vault. Affected LPs can now claim funds based on the LP snapshots of the relevant blocks.The Telos chain was not attacked and was patched without waiting for a time lock. Assets will be returned 1:1 to their owners, unrelated to the overall LP compensation. Efforts are underway to accurately capture snapshots and update the claims functionality accordingly. Regarding compensation for LP victims from the previous exploitation, it will be decided by community vote whether to restart or liquidate. All remaining assets will be consolidated into a single vault for collective decision-making.

ChainCatcher news, Kraken's Chief Strategy Officer Nick Percoco stated that the trading platform considers the recent loss of nearly $3 million as a "criminal case" and is coordinating with law enforcement to recover the funds.Percoco mentioned that these unnamed researchers stole millions of dollars in cryptocurrency from Kraken by withdrawing funds that had already been deposited into their accounts before the deposit was completed. He wrote that the attackers could effectively print assets.Previous news, the blockchain security firm CertiK announced on social media that a series of serious vulnerabilities were discovered on the Kraken exchange, which could lead to potential losses of hundreds of millions of dollars.

ChainCatcher news, according to information from Velocore communicating with the hacker on-chain, if the hacker returns the remaining funds before 4 PM Beijing time on June 3, they are willing to offer a 10% white hat bounty. The hacker has not yet responded.Previous news, Velocore released a vulnerability incident analysis report, stating that the protocol encountered a security vulnerability on June 2, resulting in a loss of approximately 6.8 million dollars worth of ETH.

ChainCatcher news, according to on-chain messages, the mastermind behind the theft of $11.6 million using the DeFi protocol Prisma Finance claims it was a "white hat rescue" and is inquiring about the return of the funds.About 6 hours after the attack, a message was sent from the address "0x2d4...7507a" (identified as one of the three addresses related to the attack) stating: "Hello, this is a white hat rescue, who can I contact to refund?" Prisma replied: "Please contact us at negotiations@prismafinance.com."

ChainCatcher message, Super Sushi Samurai officials stated on social media that the attacker is a white hat hacker, and they have contacted him on Blockscan, and may collaborate to resolve the issue in the future.

ChainCatcher message, SlowMist YuXian posted on platform X reminding: Users of the DEX protocol ParaSwap need to pay attention to revoke the fund authorization for the following address (multi-chain): 0x00000000FdAC7708D0D360BDDc1bc7d097F47439. The related risk funds have been rescued by white hats, and the loss is minimal.Previously, the DEX aggregator ParaSwap posted on platform X stating that it discovered a critical vulnerability affecting users authorized to the Augustus V6 contract. ParaSwap has suspended the V6 API and conducted a white hat attack to ensure the safety of user funds. These funds are now safely stored in a Safe wallet starting with 0x66E90 and will be returned to users soon.In addition, users must revoke permissions for the Augustus V6 contract. Currently, 4 addresses are affected, with a total loss of $24,000.

ChainCatcher news, the Blast ecosystem LaunchPad and yield aggregator BLASTOFF announced that its fund pool Future Yield Minter Vault was hacked, resulting in the theft of approximately 150 ETH (about $600,000). The official team has currently disabled staking in the fund pool and is conducting a thorough investigation.The BLASTOFF team expressed willingness to offer a 20% white hat bounty to the hacker, hoping they will contact them promptly. Additionally, BLASTOFF stated that its CEO will compensate affected users, and refunds have already been completed. The fund pool will only be restarted after an audit.

ChainCatcher message, the full-chain CDP protocol Seneca stated on social media that it is working with third-party security providers and law enforcement to track the stolen funds and identify the recipient's wallet. The team urges the hacker to return the funds as soon as possible to avoid further legal action, and a 20% white hat bounty will be granted if the funds are returned.

ChainCatcher message, the Shield team stated that the Poloniex theft incident seems to have made promising progress in tracking, and Sun Yuchen left a message on the chain stating:"We have confirmed your identity, and the police from China, the United States, and Russia have intervened. All stolen funds have been marked and cannot be used; the counterparties will be frozen. Return the assets by November 25, 2023, and we will provide a $10 million white hat reward. If not returned by then, police from multiple countries will take action."

ChainCatcher message, Sun Yuchen stated on platform X, "We are offering a 5% white hat bounty to the Poloniex hacker. Please return the funds to the following ETH/TRX/BTC wallets. We will give you 7 days to consider this proposal before law enforcement gets involved."ETH: 0x176F3DAb24a159341c0509bB36B833E7fdd0a132TRX: TUgSgCQL6pMSy9zByn4sgxqrJa95sZExBGBTC: 14XKsv8tT6tt8P8mfDQZgNF8wtN5erNu5D

ChainCatcher news, according to monitoring by ZachXBT, HTX has sent a white hat bounty of 250 ETH, worth $410,000, to the HTX Global attacker, with the message: "You made the right decision. Please submit a security vulnerability analysis report via email so that we can avoid similar incidents in the future. Your privacy will be protected."Earlier, ChainCatcher reported that the hacker who attacked HTX returned 4,999 ETH (approximately $8.2 million) of the stolen funds.

ChainCatcher news reports that a white hat hacker named Kankodu claimed to have discovered Euler's "first deposit bug" in July 2022, for which he received a $50,000 bug bounty. However, the "donateToReserves" function introduced during the fix of this bug led to a subsequent theft of $200 million.According to previous reports from ChainCatcher, Euler Finance suffered a hacker flash loan attack in March this year, with losses amounting to approximately $197 million, including 8,877,507.35 DAI, 849.14 WBTC, 34,413,863.42 USDC, and 85,818.26 stETH.

ChainCatcher message, DeFi public product JPEG'd tweeted that the DAO multi-signature address confirmed the receipt of 5494.4 WETH, and the owner of the address that recovered the funds from the pETH vulnerability received a 10% (610.6 WETH) white hat bounty.

ChainCatcher message, the zkSync ecological lending protocol EraLend has addressed the hacker on Twitter, stating the following:We know that during yesterday's attack, you could have drained all available liquidity, but you chose to only steal a portion. We believe this is your expression of "goodwill," or a potential concern for the victims and the widespread impact of the severe attack.However, your actions are illegal and have had a destructive impact not only on the 500,000 EraLend users but also on the entire DeFi community. We have reached out to security professionals, CEX, the broader DeFi security community, and law enforcement agencies. We are tracking the traces you left before and after the attack, both on-chain and off-chain.Therefore, we propose: please return 90% of the stolen funds to the following address by July 27th, 14:00 (UTC), and we will stop pursuing you. You can peacefully keep 10% of the stolen funds as a white hat bounty.The receiving wallet address is: 0x9eEE479DCf6075a0cb905c27e8F952910c3bb69D.If the stolen funds are not returned by the deadline, we will have no choice but to escalate this matter. Transactions will be terminated, and we will immediately set up another bounty for anyone who helps us prosecute you and recover the stolen funds. Please make a wise decision. (source link)