vulnerability
Russian Blockchain E-Voter Identities Can be Exposed Through Vulnerability
On the final day of Russia’s vote on the proposed constitutional amendments—a vulnerability in the blockchain-based system that allows user’s votes to be decrypted has been exposed by Russian media.
Senior Worker at Bithumb Triggered Hacking Vulnerability
A senior worker at Bithumb, a leading South Korean crypto exchange, is in a tight spot after a Korean court discovered that he is liable for web safety legislation breaches. As a result, his misdeeds made the crypto exchange vulnerable to a 2017 hack that led to the loss of cryptocurrency holdings worth $6 million USD.
TOR Network Vulnerability May Have Facilitated Dark Web Bitcoin Theft
According to a cybersecurity researcher, Bitcoin thieves and hackers have controlled more exit relays on the Tor network this year than in the past five, raising serious cybersecurity concerns that experts are looking to fix.
Critical RCE Vulnerabilities Discovered in Kafka UI
Researchers identified three critical remote code execution (RCE) vulnerabilities in Kafka UI. Users are advised to upgrade to version 0.7.2 to mitigate risks.
SlowMist Reports Surge in Diverse Crypto Security Incidents for the Week of September 17-23, 2023
SlowMist, a cybersecurity firm specializing in blockchain, released its weekly security report for the week of September 17-23, 2023. The report highlights a total of seven security incidents with an estimated loss of around $380,600. The week saw a significant rise in phishing attacks and rug pull tactics, as well as the emergence of diverse attack methods like DNS hijacking and contract vulnerabilities.
Euler Finance suffers $197M DeFi hack
Decentralized finance (DeFi) protocol Euler Finance lost nearly $197 million in a flash loan attack on March 13, impacting more than 11 other DeFi protocols. The vulnerability remained on-chain for eight months despite a $1 million bug bounty in place. Euler Finance disabled the vulnerable etoken module and vulnerable donation function, and has reached out to security firms and the ETH security community to help with the investigation and recover the stolen funds.
Critical Security Vulnerability in OKX iOS App: CertiK's Urgent Update Advisory
CertiK issued a high-priority alert for OKX iOS app users, urging an immediate update due to a discovered critical RCE vulnerability that poses a serious threat to data and asset security.
Rogue Validator Outsmarts MEV Bots, Resulting in a $25 Million Loss
MEV bots attempting sandwich trades lost $25 million worth of digital assets to a rogue validator. The loss included Wrapped Bitcoin, USD Coin, Tether, Dai, and Wrapped Ether. Blockchain security firm CertiK explained that the attack was due to the centralization of power with validators, making them vulnerable to such attacks.
THORChain Pauses Network Amid Reports of Vulnerability
THORChain has temporarily halted trading due to a potential network vulnerability, causing its native token, Rune, to fall 5% in value.
Trust Wallet Discloses Security Flaw Resulting in $170k Loss
Crypto wallet Trust Wallet has reported a security vulnerability, resulting in almost $170k in losses for some users. The vulnerability has been fixed after Trust Wallet found out about it through its bug bounty program.
Bitcoin Core Vulnerability Exposes Risks in Datacarrier Limits: NVD Flags Security Concerns
NVD has discovered a critical vulnerability (CVE-2023-50428) in Bitcoin Core, which allows datacarrier limit bypass and poses significant network risks, notably exploited by Ordinals.
OpenAI Launches Bug Bounty Program
OpenAI has launched a bug bounty program to address privacy and cybersecurity issues, inviting security researchers and ethical hackers to identify and address vulnerabilities in its systems. The program offers cash rewards ranging from $200 to $20,000 for qualifying vulnerability information.
Kyber Network Advises Removal of Funds Amid Potential Vulnerability
Kyber Network has advised liquidity providers to remove their funds due to a potential vulnerability in the Kyberswap Elastic decentralized crypto exchange. No funds have been lost, and farming rewards have been temporarily suspended until a new smart contract can be deployed.
Unraveling ChatGPT Jailbreaks: A Deep Dive into Tactics and Their Far-Reaching Impacts
Exploring the intricacies of ChatGPT jailbreak strategies, this paper delves into the emerging vulnerabilities and the advanced methodologies developed to evaluate their effectiveness.
Deceptive AI: The Hidden Dangers of LLM Backdoors
Recent studies reveal large language models can deceive, challenging AI safety training methods. They can hide dangerous behaviors, creating false safety impressions, necessitating the development of robust protocols.
South Korea’s Largest Bank Reveals Crypto Custody Service Filing and Potentially Even More Crypto Services to Come
The largest bank in South Korea, KB Kookmin Bank has revealed its filing of a trademark application for KB Digital Asset Custody (KBDAC), its crypto custody service.
Tik Tok Pushes Harder for Blockchain Despite Vulnerabilities in Core System
Hundreds of millions of users are using Tik Tok, meaning that any breach of data could lead to serious vulnerabilities for users and the company.
Bitcoin Price Surges While the British Pound Falls During Brexit Fiasco
Bitcoin’s price shot up above $10,000, and other major cryptocurrencies have also seen gains. The turmoil surrounding the possibility of a no-deal Brexit has led to the fall of the British Pound.
COVID-19 Pandemic-Induced Crisis is Pushing CBDC Adoption, says Bank of Russia
Financial regulators are keeping a keen eye on central bank digital currencies (CBDCs) because they see them as silver linings.
South Korea’s Central Bank Launches Central Bank Digital Currency Pilot Program in Case of Future Necessity
South Korea’s central bank recently announced that it has launched a pilot program assessing the issuance of a central bank digital currency (CBDC). The Bank of Korea has stated that there are no immediate plans to launch a CBDC, however, the pilot program will allow the central bank to be prepared in the future if the changing market conditions require its issuance.
University of Utah Paid Out $450k to Ransomware Gang to Prevent Student Data Leak
The University of Utah paid a hefty sum of $457,059.24 to a ransomware gang to prevent compromised student data from being leaked online.
PAID Network DeFi Platform Attacked as Hacker Gains $3 Million Of ETH After Minting $166 Million Of Tokens
PAID token crashed by over 75% instantly after the popular PAID Network DeFi protocol experienced a massive hack.
Origin DeFi Protocol Loses $7 Million to Hacker in Security Breach
Origin Protocol is the latest DeFi platform to lose $7 million due to hacking. The company has said that it is working to restore the stolen funds.
PowerGhost: The Mining Malware to Watch in 2020
In Part 3 of the interview, Yeo Siang Tiong, General Manager for Southeast Asia, Kaspersky shared with us the state of cryptocurrency mining malware and he believed we should watch out for Powerghost in 2020! Yeo also explained the cybersecurity solutions of Kaspersky on quantum computing.