ChainCatcher news, according to Blue Whale News , TRON blockchain founder Justin Sun held a media conference for "The Most Expensive Banana"《Comedian》in Hong Kong and publicly ate a banana, in response to previous allegations that the banana auction event was malicious hype and involved money laundering.Justin Sun denied the allegations and stated: "Regarding the so-called money laundering allegations, I want to say that this is impossible. The world's most famous auction houses, like Sotheby's, have very strict anti-money laundering measures, and every transaction undergoes rigorous scrutiny. All my investment activities are transparent and compliant."

OKLink released the November 2024 Security Report, which indicates that on-chain security incidents across the network have resulted in a total loss of approximately $203 million. Phishing scams alone accounted for 64.80% of the total losses, amounting to about $131 million, with no significant Rug Pull incidents reported. REKT incidents accounted for 22.06% of the losses, totaling approximately $45 million.On November 13, a user copied an incorrect address from contaminated transaction history, resulting in a loss of $129 million. An hour later, the attacker returned all the assets. On November 15, the v1 liquidity pool contract of the Aptos ecosystem project Thala was attacked due to a security vulnerability, causing a loss of $25.5 million. Subsequently, Thala negotiated with the attacker to recover all user assets through a $300,000 bounty.OKLink reminds everyone to carefully verify the receiving address when performing on-chain operations. Some users have lost over $100 million by copying incorrect addresses from contaminated transaction records. It is essential to double-check the recipient's address when conducting on-chain operations and avoid the habit of directly copying addresses from transaction records or chat logs. Additionally, learn to use Web3 on-chain tools to mitigate risks. OKLink provides tools for on-chain address queries, token authorization checks, and large transfer monitoring, ensuring on-chain security and keeping you informed of market trends, helping you overcome on-chain anxiety.

ChainCatcher news, according to 8world, the Singapore Police Force and the Cyber Security Agency issued a joint statement indicating that recently, criminals have been observed using various methods to steal cryptocurrency from victims' wallets. Their common tactics include:Impersonating legitimate entities on social media, using giveaways or promotional activities as bait, and asking victims to "verify" their wallets by sharing login credentials and other personal information.Criminals may also impersonate the owners of cryptocurrency companies, sending malicious links under the pretext of assessing the victims' capabilities in the blockchain field. Once clicked, these links automatically transfer cryptocurrency from the victims' wallets.Additionally, criminals may exploit phishing websites, software vulnerabilities, smart contracts, etc., to invade victims' wallets and steal cryptocurrency.Singapore government agencies urge the public to take preventive measures to protect their wallets, such as: using hardware wallets and other secure offline storage devices; employing strong passwords and two-factor authentication; and regularly checking accounts.If you suspect that you have become a victim, you should immediately contact the cryptocurrency exchange to stop trading or freeze your account if possible; check and revoke any suspicious token authorizations; promptly transfer any remaining cryptocurrency from the affected wallet to another wallet; and report to the relevant authorities.

ChainCatcher message, according to Certik Alert monitoring, multiple deposits have been detected in Tornado.Cash, traceable to the $55 million phishing incident that occurred on August 21.The attacker with the address starting with eth:0x5d4 has exchanged the minted DAI for ETH and dispersed the funds.

ChainCatcher news, ai16z partner Shaw stated regarding the ELIZA event: "We have been developing this thing for a year. This is the project of my dreams. Some people are building things using our name and art, and people are confused. We have resolved the issues. Now everyone's tokens are performing well. Let's keep going."Previous news, ai16z partner Shaw announced earlier today that the ELIZA airdrop for ai16zeliza holders has officially launched.

ChainCatcher news, the on-chain trading terminal DEXX has released an update regarding the recent security incident: "DEXX has officially filed a lawsuit, and the SlowMist team is actively assisting law enforcement with the follow-up investigation. At the same time, DEXX is actively discussing a compensation plan. Regarding compensation, the platform makes the following solemn statement:If all assets can be recovered, DEXX will immediately provide full compensation to ensure that users' interests are not affected.If only part of the assets can be recovered, the platform will still fulfill its compensation responsibilities; the specific compensation plan will be determined based on the amount recovered. DEXX is currently mobilizing all resources and efforts to recover the stolen assets and resolve the issue as soon as possible."Previous news, according to SlowMist statistics, the DEXX incident has confirmed over 900 victims, with total losses estimated at 21 million USD.

ChainCatcher news, blockchain security company SlowMist stated that as of November 18, the DEXX incident report has been updated: over 1,100 reports of stolen funds have been received from the community. After removing duplicate reports, more than 900 victims have been identified, with total losses estimated at $21 million (affected by price fluctuations). Loss details (so far):• >$1 million: 1 victim• $500,000 to $1 million: 2 victims• $100,000 to $500,000: 33 victims• $10,000 to $100,000: 292 victims• <$10,000: 656 victims

ChainCatcher message, Slow Mist released the DEXX incident report (as of November 16, 17:00) has received over 590 reports of stolen funds from the community. After deduplication, it is confirmed that there are more than 500 independent victims, with total losses estimated at around 13 million USD (the specific amount may vary with price fluctuations).The above data is only a partial statistic, and more updates will be provided as the investigation progresses.

ChainCatcher news, blockchain security audit company CertiK has issued a statement saying that it has recently received a large number of requests for help from users of the DEXX platform, who reported that their account assets had been emptied. After verification, CertiK confirmed that this security incident occurred on the Solana chain, which is not within CertiK's audit coverage.CertiK stated that the main reason for the incident was improper private key management on the DEXX platform, leading to the leakage of the official private key.It is reported that the large-scale theft of user assets on the DEXX trading platform has currently confirmed that the stolen funds have reached over 100 million yuan, and the hackers are still continuing their attacks. CertiK reminds all blockchain projects and users that the secure storage and management of private keys is key to ensuring asset safety.

ChainCatcher message, Slow Mist founder Yu Xian posted an update on the DEXX incident on social media, stating that Slow Mist has received nearly 500 requests for information regarding the DEXX theft. The incident analysis is still ongoing, and the preliminary assessment indicates a loss in the tens of millions of dollars (due to significant price fluctuations of some meme coins). Almost every victim corresponds to a different attacker address, indicating that the attackers had been planning this incident for a long time. The source of the gas was exchanged through XMR three days ago.

ChainCatcher message, Slow Mist stated on platform X that, according to data submitted by community users, the losses from the DEXX hacking incident have reached millions of dollars, and these funds are currently scattered across multiple different hacker addresses.

ChainCatcher news, according to BeInCrypto, Indian police have arrested West Bengal resident SK Masud Alam for allegedly participating in the WazirX hacking incident. Earlier this year, the hacking incident resulted in a loss of over $230 million in cryptocurrency, leaving customers unable to withdraw their funds.Alam is accused of creating a fake account under the alias Souvik Mondal and selling that account to hackers via Telegram. The account was later used to conduct illegal operations against the cryptocurrency exchange WazirX.

ChainCatcher news, according to Decrypt, the U.S. Department of Justice (DOJ) has established a website to collect statements from individuals affected by the 2016 Bitfinex hacking incident, aiming to provide potential victims an opportunity to share how the criminal actions of Ilya Lichtenstein and his wife Heather Morgan have impacted them.Although the DOJ's position is that, under the Crime Victims' Rights Act (CVRA), there are no victims of a convicted crime, the department has still issued this notice to the public to ensure that anyone who may have been harmed by the defendant's actions can be heard. This includes affected Bitfinex account holders.

ChainCatcher news, according to SolanaFloor monitoring, the crypto wallet Phantom is down due to a major backend incident.

ChainCatcher news, Bitmain issued a statement stating that Bitmain focuses on the cryptocurrency mining machine business and has no connection with the recent media reports regarding the supply investigation. Any news claiming that Bitmain is involved in the aforementioned incident is false. Bitmain reserves the right to pursue legal responsibility against media outlets that publish and disseminate false information.Previous news, the U.S. Department of Commerce launched an investigation into TSMC earlier this month to confirm whether it provided chips to Huawei. Subsequently, TSMC stopped supplying chips to the AI company Sophgo, which is affiliated with Bitmain.

ChainCatcher news, according to Decrypt, the cryptocurrency exchange platform BingX has fully restored its operational capabilities following a recent hot wallet incident, with all deposits and withdrawals back to normal. To address this incident, BingX has launched a new "ShieldX" program, a comprehensive initiative aimed at enhancing the platform's security infrastructure."ShieldX" introduces an upgraded wallet firewall designed to provide advanced protection against external threats, further safeguarding user assets. BingX has also partnered with leading third-party security firms to implement additional round-the-clock monitoring and threat detection, ensuring the swift and proactive identification and resolution of any vulnerabilities.

ChainCatcher message, the Safe team reviewed the security incident mentioned in the post-mortem report of Radiant Capital, noting that the Safe {Wallet} front-end functioned normally, but external devices were compromised during the signing process, allowing hackers to replace transaction data and trick signers into signing malicious transactions.The Safe team believes this incident highlights the risks of blind signing, where users approve transactions without fully viewing the transaction details, especially when using hardware wallets. To address this issue, Safe recommends using multiple signing devices from different vendors (for example, a combination of Ledger and Trezor) and connecting these devices through trusted interfaces to enhance transaction visibility and security.Additionally, Safe is exploring technologies like conditional signing to provide more contextual information without sacrificing security. The Safe team is considering directly calculating the Ledger hash in its interface so that users can verify the hash displayed on the hardware wallet and the interface. The Safe team emphasizes that all parties in the ecosystem need to collaborate to address the blind signing issue and is committed to working with hardware wallet providers and the community to improve transaction and message signing processes.