ChainCatcher news, Slow Mist disclosed on platform X that the address where the stolen funds from the AdsPower hacking incident are concentrated has increased by one (previously four), with the stolen funds exceeding 4.7 million USD.ChainCatcher previously reported that the AdsPower fingerprint browser stated on platform X that it has now locked four hacker addresses together with Slow Mist:0x16199891430886782b3413f0a2b24d593b7873460xf772be79bd6d1f4316e938c6c40cf68cf6911c810x4e8f3340eFbC48EC36d043F11a5f23D457dB51ea0xD3d5aF11A482A89D4BbfE4880C3D71D1dE5F155fOnce again, please be reminded that if you receive a pop-up notification, please immediately transfer your on-chain assets to a secure wallet address.

ChainCatcher news, Slow Mist disclosed on platform X that the stolen funds from the AdsPower hacking incident exceeded $4.1 million, mainly concentrated in four addresses.Previous news, AdsPower's fingerprint browser transparently disclosed a hacking incident. If you used AdsPower and installed an extension wallet or manually updated the extension wallet between January 21, 18:00 and January 24, 18:00 (UTC+8), then the extension wallet on AdsPower (such as MetaMask, etc.) may be a backdoored version, which could steal your mnemonic phrases/private keys.

ChainCatcher news, according to the Workers' Daily report, the Beijing People's Procuratorate has released the work situation of the "Procuratorial Protection for Enterprises" special action and published typical cases. In a case of embezzlement, the defendant defrauded the company of over 140 million yuan, and the procuratorial authorities tracked the virtual currency to recover losses.Between 2020 and 2021, Feng, taking advantage of his position at a certain technology company's service provider and regional operations growth department, conspired with Tang and Yang to defraud the company of service provider bonuses totaling over 140 million yuan. Subsequently, Feng directed Tang and Yang to use eight overseas virtual currency trading platforms to convert the involved funds from yuan to virtual currency, obfuscating the source and nature of the funds through overseas "mixing" platforms, and transferring them in multiple layers. Part of the involved funds flowed into accounts controlled by Feng and others in yuan form, while some were concealed by Feng and others in virtual currency form.In response to the defendants' distribution of profits using virtual currency and the obfuscation of fund flows through overseas "mixing" platforms, the procuratorial authorities conducted a line-by-line comparison and two-way review of virtual currency and legal tender, accurately identifying the flow of funds. This ultimately prompted Feng to return 92 bitcoins, recovering over 89 million yuan in illicit gains, maximizing the economic losses recovered for the victimized unit.On September 14, 2024, the Beijing First Intermediate People's Court issued a judgment, sentencing defendant Feng and seven others for embezzlement, with prison terms ranging from 14 years and 6 months to 3 years, along with corresponding fines. The judgment has taken effect.

ChainCatcher message, Slow Mist posted on platform X stating that its team will assist law enforcement in tracking stolen funds and analyzing related clues. A complete list of hacker addresses will soon be released in collaboration with DEXX. Currently, approximately 2,000 suspicious addresses have been roughly identified.

ChainCatcher news, Beosin Alert posted on platform X, currently has collected about 2800 DEXX victim addresses, with over 9000 stolen transactions. An analysis of some stolen addresses' funds revealed that the stolen funds are still held in the hacker's address and have not been transferred out. It is likely the work of the same hacker, who is speculated to transfer funds based on the victims' token balances and arranged them in descending order of value.

ChainCatcher news, according to Cointelegraph, the Ontario Provincial Police (OPP) thanked the stablecoin issuer Tether for assisting in the investigation, freezing approximately 10,000 Canadian dollars (7,186 USD) worth of Tether stablecoin stolen from an individual, which has now been returned to the victim.OPP Detective Inspector Addison Hunter stated, "With the voluntary assistance and cooperation of Tether International Ltd., the stolen digital assets were successfully seized and returned to the victim. This collaboration played a crucial role in ensuring the swift recovery of the assets."

ChainCatcher news, Aark Digital announced the launch of the Arkham Bounty Program on X, aiming to recover recently stolen funds. The bounty is divided into two types:Bounty 1: A reward of up to 6,100 ARKM (or 10,000 USDC) for actionable intelligence that directly leads to reporting to CEX or freezing/recovering stolen assets;Bounty 2: For those who contribute to the successful recovery of stolen assets, the team will offer a reward of 207,912.83 USDC and 3.62 ETH, or 15% of the stolen amount as a white hat reward.It is reported that Aark Digital recently experienced a security incident, where unauthorized parties accessed and stole approximately 1,386,085 USDC and 24.143 ETH, totaling around 1.5 million USD.

ChainCatcher news, according to an update disclosed by Arkham on the X platform, data shows that after the reported hacking attack yesterday, the U.S. government's address has just recovered $19.3 million, less than 24 hours after the initial address breach, and has received 88% of the stolen funds so far.Previous news, according to Arkham monitoring, a cryptocurrency wallet associated with the U.S. government was allegedly hacked, resulting in approximately $20 million in assets being stolen. The stolen funds originated from a portion of the funds seized by the U.S. government in the 2016 Bitfinex exchange hacking incident.

ChainCatcher message, according to @ai_9684xtpa monitoring, after the stolen funds from the U.S. government were transferred to an address starting with 0x348, some stablecoins have been exchanged for 2709 ETH (approximately 6.08 million USD).The exchanged ETH has been distributed to Binance and two new addresses, and the hacker's wallet currently still holds AUSDC worth 13.2 million USD.

ChainCatcher news, according to PeckShieldAlert monitoring, the hacker address involved in the Radiant Capital attack has bridged almost all stolen funds from Arbitrum and BNB to the Ethereum network, totaling approximately 20,500 ETH, worth about 52 million USD.

ChainCatcher news, according to official sources, the Tapioca Foundation has announced a bounty for hackers seeking the return of stolen assets. The deadline for this proposal has now passed without any response, making the offer to hackers invalid.Contributors of the Tapioca Foundation are currently collaborating with law enforcement and various security organizations. Most of the stolen funds are still in the hands of the hacker team that stole the assets.The Tapioca Foundation is now offering a 10% bounty as a reward for any information or actions that lead to the recovery of the stolen funds.

ChainCatcher message, Radiant Capital has issued a reminder on X regarding the security incident, stating that all users need to take immediate action to protect their wallets.If you have ever interacted with Radiant (or believe you may have), you must immediately revoke authorization for the affected contracts, or you risk having your funds stolen. Please use revoke.cash to protect your assets by removing any permissions to prevent further losses. Radiant will continue to fully track and freeze the stolen funds and work closely with security experts and law enforcement.It is reported that Radiant Capital was previously hacked, resulting in a loss of $53 million.

ChainCatcher news, Radiant Capital's official social media post reviewed that the protocol experienced a highly complex security vulnerability on the 16th, resulting in a loss of $50 million. The attacker exploited multiple developers' hardware wallets through highly advanced malware injection.During the intrusion, the front end of Safe Wallet (also known as Gnosis Safe) displayed legitimate transaction data, while the poisoned transactions were signed and executed in the background. This vulnerability occurred during a routine multi-signature emission adjustment process, which is conducted regularly to adapt to market conditions and utilization rates. DAO contributors strictly adhered to many industry standard operating procedures throughout the process. Each transaction was simulated on Tenderly to ensure accuracy and was individually reviewed by multiple developers at each signature stage. During these reviews, neither Tenderly nor the front-end checks in Safe showed any anomalies. To emphasize the importance of this, it was completely undetectable during the manual review of the Gnosis Safe UI and the Tenderly simulation of regular transactions, as confirmed by external security teams.Radiant Capital stated that it has been working closely with Seal911 and Hypernative and has implemented more robust multi-signature controls. The FBI and zeroShadow are fully aware of the violations and are actively working to freeze all stolen assets. The DAO is deeply disturbed by this attack and will continue to work tirelessly with relevant agencies to identify the attackers and recover the stolen funds as soon as possible.

ChainCatcher news, NFT artist DeeKay updated on the "wallet theft" incident, stating that the identity of the thief has been determined and the funds can be recovered.DeeKay did not specify who stole his funds but mentioned it was someone very close to him. The thief had access to a piece of paper where DeeKay had written down the seed phrase, so this theft did not involve hacking through Google Drive, malware, or similar means.Previous news, DeeKay stated last week that all wallets were stolen, and all the savings earned as a Web3 artist were lost.

ChainCatcher news, Onyx Protocol posted on platform X stating that in response to the recent theft incident, Onyx Protocol has released proposal OIP-46, suggesting to restart Onyx's open-source licensed financial network Onyx Core as the main product, ensuring the governance of Onyx Core and the rewards for Onyx Stakers alongside XCN Staking.According to the proposal, Onyx Protocol will operate a closed lending protocol on Onyx Core, allowing users to wrap and lend NFTs and real-world assets (RWA), while supporting crypto assets from multiple chains. This move will shut down the Ethereum-based lending market and fully compensate all affected users, paying them at a 1:1 ratio for the assets they provided.

ChainCatcher news, according to Cointelegraph, the yield protocol Shezmu recovered nearly $5 million of stolen funds just hours after successfully negotiating with hackers. This morning, Chaofan Shou, co-founder of blockchain analytics firm Fuzzland, warned that one of Shezmu's repositories had been compromised. While it is unclear whether the incident was intentional or a genuine hack, Shou confirmed that approximately $4.9 million worth of cryptocurrency was stolen in the process.Shezmu subsequently confirmed that one of its ShezmuUSD (ShezUSD) stablecoin vaults was attacked and actively urged the hackers to return the funds in exchange for a bounty, with no legal repercussions. The hackers responded to this request by asking for a 20% bounty instead of the initial 10%, and Shezmu agreed to pay the bounty.Within hours, Shezmu began to recover the stolen funds, but at the time of writing, not all funds had been restored. The Shezmu team urged investors to limit their interactions with the protocol's Oasis vault until further updates are available.

According to ChainCatcher news, Cyvers Alerts monitoring indicates that the DeFi project DeltaPrime on the ARB chain has had all stolen funds bridged to the Ethereum network and deposited into Tornado Cash.Previous news reported that DeltaPrime was suspected to have been attacked, and the administrator seems to have lost the private key. Suspicious addresses are continuously transferring assets, and so far, the affected liquidity pools include DPUSDC, DPARB, and DPBTCb. The attacker has exchanged USDC for ETH. To date, the estimated total loss is around $4.5 million, and the attack is still ongoing, so the total loss may increase.

ChainCatcher message, Delphi Labs co-founder José Maria Macedo posted on X: "There is increasing evidence pointing to the identity of the Terra hacker. If you (referring to the hacker) see this post, please come forward to negotiate and return the stolen funds in exchange for a bounty.Otherwise, we will be forced to disclose the information we currently have and involve law enforcement. Don't ruin your life over this."

ChainCatcher news, Binance CEO Richard Teng posted on social media stating, "Binance is assisting the Turkish cryptocurrency exchange BtcTurk with an investigation and has frozen over $5.3 million of stolen funds.Binance's investigation and security teams are working around the clock and will provide further updates as necessary."Previously, the Turkish cryptocurrency exchange BtcTurk announced that the platform had suffered a cyber attack and has suspended all cryptocurrency deposit and withdrawal operations.

ChainCatcher news, Gala Games announced on platform X that the stolen funds from the recent security incident have been recovered. The team will use GalaSwap to convert ETH back to GALA.Previous news, the co-founder of the Web3 gaming platform Gala Games stated on X: "The platform was hacked, resulting in the unauthorized sale of 600 million GALA tokens (21 million USD) and the destruction of 4.4 billion dollars worth of tokens. We identified the vulnerability and removed unauthorized access to the GALA contract within 45 minutes. Our GALA Ethereum contract is secure and protected by a multi-signature wallet. We messed up internal controls, and the team is taking steps to ensure it doesn't happen again. We believe we have identified the attacker, and we are currently working with the FBI, the U.S. Department of Justice, and some international agencies."