ChainCatcher news, according to the official announcement from zkLend, since the hacker did not contact the project team before the deadline, the zkLend team has submitted an incident report to the Hong Kong police, FBI, and Department of Homeland Security and initiated an investigation.The investigation shows that the hacker is related to attacks on other DeFi protocols that occurred previously. The project team has monitored the flow of funds and identified multiple related wallet addresses, and the relevant information has been submitted to centralized exchanges. zkLend will announce the fund recovery and release plan next week, while the security team is preparing a post-incident analysis report.Previously, it was reported that zkLend was attacked by hackers, and the team issued an announcement through the ZEND token deployer account, proposing that the hacker could keep 10% of the funds as a white hat reward.

ChainCatcher message, the user who mistakenly transferred 7912 ezETH to a contract address, 2024.qklpj.eth, has issued a bounty announcement: "Urgent request for help, a large amount of funds has been lost in a contract, and immediate assistance is needed to recover it. A reward of 10% will be provided upon successful recovery of the funds, which is approximately $2.5 million at current prices."According to previous reports, the address 2024.qklpj.eth seems to have mistakenly transferred 7912 ezETH to a transit contract address, resulting in the funds being locked and unable to be withdrawn. This address transferred 5477 ezETH to the multi-signature address 0x5E6...A1c19, likely intending to write a smart contract to quickly grab the redemption quota, and this portion of funds has been normally withdrawn in batches. One of the transactions even went directly into the transit contract 0xe9a...696C4 (marked by Arkham as CoboSafeAccount), which cannot be transferred or upgraded.

ChainCatcher news, Radiant Capital's official social media post reviewed that the protocol experienced a highly complex security vulnerability on the 16th, resulting in a loss of $50 million. The attacker exploited multiple developers' hardware wallets through highly advanced malware injection.During the intrusion, the front end of Safe Wallet (also known as Gnosis Safe) displayed legitimate transaction data, while the poisoned transactions were signed and executed in the background. This vulnerability occurred during a routine multi-signature emission adjustment process, which is conducted regularly to adapt to market conditions and utilization rates. DAO contributors strictly adhered to many industry standard operating procedures throughout the process. Each transaction was simulated on Tenderly to ensure accuracy and was individually reviewed by multiple developers at each signature stage. During these reviews, neither Tenderly nor the front-end checks in Safe showed any anomalies. To emphasize the importance of this, it was completely undetectable during the manual review of the Gnosis Safe UI and the Tenderly simulation of regular transactions, as confirmed by external security teams.Radiant Capital stated that it has been working closely with Seal911 and Hypernative and has implemented more robust multi-signature controls. The FBI and zeroShadow are fully aware of the violations and are actively working to freeze all stolen assets. The DAO is deeply disturbed by this attack and will continue to work tirelessly with relevant agencies to identify the attackers and recover the stolen funds as soon as possible.

ChainCatcher news, according to CoinDesk, WazirX co-founder Nischal Shetty stated that the exchange is seeking assistance from other exchanges to deal with the $230 million hacking incident that occurred earlier this month, which accounted for nearly 45% of customer funds. Shetty mentioned that all possible options are being considered and emphasized the importance of seeking help from other exchanges.In addition, Shetty revealed that WazirX has filed a report with the Mumbai police and has reported the incident to the Indian Computer Emergency Response Team (CERT-In). Indian CERT has raised some targeted questions, and according to a source, the Federal Bureau of Investigation (FBI) in the United States is also looking into the matter.Regarding the possibility of collaboration with other exchanges, Shetty did not rule out the possibility of being taken over by another company, but he could not disclose specific details due to confidentiality agreements. WazirX is currently facing challenges, including a lack of clear regulatory guidance, which is affecting cryptocurrency withdrawal operations.

ChainCatcher news, Bitcoin decentralized finance tool Alex Lab has released an update on the attack incident, stating that the team is closely monitoring the attacker's wallet and has notified all relevant CEXs. All known CEX accounts associated with the attacker have been frozen. A portion of the stolen funds has been identified and is being recovered from a CEX. The team is actively collaborating with other CEXs through the necessary processes to facilitate the return of more funds. To further recover the stolen funds, we are prepared to file a police report, and if the attacker does not cooperate with us in a timely manner, we will seek police support to assist in the recovery of the funds.So far, all aBTC, sUSDT, xBTC, xUSD, ALEX, atALEX, LiSTX, LUNR, SKO, CHAX, $B20, ORDG, ORMM, ORNJ, TRIO, TX20, and STXS have been recovered. The smart contract code and infrastructure of ALEX have not been compromised.Alex Lab also stated that due to the uncertainty of recovering all stolen funds, they are evaluating the use of ALEX reserves held by the Alex Lab Foundation to fund a treasury grant program to support the community affected by this attack during this difficult time. Additionally, they are considering the possibility of proposing a SIP to the Stacks community to burn STX held in wallets that have not recovered stolen funds and to mint new STX for affected community members.Previous news, the Bitcoin DeFi platform Alex announced the discovery of a vulnerability in the XLink bridge and has actively collaborated with exchanges, partners, and ecosystem contributors to resolve the situation.

ChainCatcher news, the Dongyang People's Court issued a notice on the return of funds in the fraud case involving Zhou Sheng, He Yan, and others. The notice states that based on the effective criminal judgment documents such as Zhe 0783 Criminal First 560 and the information verification registration, the first round of fund return work for the involved funds that have been collected is being carried out. The specific matters are announced as follows: the registration for this fund return work will start from the date of the announcement and will last for 1 month. The recipients of the fund return are investors who have invested in the fraudulent digital currency platforms SIE (later renamed BTUE), CFEX, LKF, GDbit, etc., and have overall losses. The amount of this return is calculated based on the amount of loss and the funds that have been collected, determining a uniform refund ratio.It is reported that this fund return will be conducted through the release on WeChat official accounts, links, and scanning QR codes to enter the APP for information registration, with backend review and confirmation. After passing the review, the payment will be assisted by the Dongyang branch of the Industrial and Commercial Bank of China.In August 2019, the Dongyang Public Security Bureau launched an investigation into digital currency fraud platforms such as SIE, CFEX, LKF, and GDBIT, and key members of this fraud group were successively captured and brought to justice. This fraud group fabricated activities related to blockchain technology development, developing digital currency trading platforms through a technical team, forming a complete fraud industrial chain.In September 2021, according to the Zhejiang Procuratorate, all 171 defendants involved in this digital currency fraud series case, with an amount involved reaching 380 million yuan, were tried and sentenced.

ChainCatcher news, according to PeckShieldAlert monitoring, approximately $73.5 million worth of cryptocurrency on Ethereum was stolen in the Curve Reentrancy vulnerability. So far, about 73% (approximately $52.3 million) has been returned. The remaining value of approximately $19.7 million in cryptocurrency on Ethereum has not yet been returned by the first Curve CRV-ETH exploiters (0xb752...b324).The details of the returned funds are as follows: AlchemixFi returned in full: $22 million (including 7,258 ETH + 4,821 alETH) Jpegd Frontrunner returned 90%: $11.5 million (equivalent to 5,495.4 WETH) Metronome ($1.6 million) + CRV pool ($5.3 million) returned by c0ffeebabe.eth: $7 million Alchemix (white hat operation): $13 million. (source link)

ChainCatcher news, the Voyager Unsecured Creditors Committee has released a disclosure statement document, which elaborates on issues such as the expected recoverable amounts for customers under different liquidation scenarios, claims calculations, and VGX handling. Additionally, the price paid by Binance.US for Voyager will be determined close to the transaction cutoff date, and regardless of the cryptocurrency assets held, customers will receive a uniform recovery ratio.It is reported that after the bidding is completed, stakeholders in the transaction have 28 days to raise objections, with the objection deadline set for February 22. The hearing to finally confirm the transaction is scheduled for March 2, which provides a week to respond to any objections prior to the hearing. (source link)