hack

GM, Square family! 🌅
If you checked out for the weekend, you missed a WILD 24 hours. Between geopolitical bombshells, bridge hacks, and a genius idea from Vitalik—here is everything you need to look smart on Monday.
1/ 🇷🇺 THE $11 BILLION SHADOW NETWORK
Blockchain sleuths at Elliptic just dropped a nuke.
They uncovered a network of Russian crypto exchanges helping sanctioned entities move money.
One platform called ABCeX reportedly handled $11 Billion in transactions.
This is the big one, guys. Regulators are watching. Is this the moment they crack down—or finally admit crypto is just a tool?
Either way, volatility incoming.
2/ 🔓 IOTEX HACKED: $2M Gone
Bridge exploits are back, and they are brutal.
The IoTeX network was forced to halt after a private key leak let hackers drain $2 Million from the treasury (USDC, USDT, and IOTX).
The team says they contained it and are working with cops/exchanges to recover funds.
Moral of the story: Not your keys? Not your coins. Stay safe out there.
3/ 🤖 VITALIK’S BIG IDEA: A.I. VOTING
Ethereum’s co-founder just gave us hope for the future.
Vitalik proposed using Artificial Intelligence to help normal people vote in DAOs.
Imagine an A.I. assistant that reads the fine print on those boring governance proposals for you, filters out scams, and lets YOU make the final call.
This is how we scale decentralization. Bullish on A.I. x Crypto.
4/ 📉 THE MACRO CLOUD (Trump Edition)
Let’s be real—prices are hurting.
Bitcoin is hovering near $66k and "Extreme Fear" is back in the chat. 😱
Why?
Trump Tariffs: Proposed tariffs jumped from 10% to 15%, spooking global markets.ETF Bleed: Spot Bitcoin ETFs have seen 4 weeks of straight outflows.
Institutions are scared. But as Tim Draper says... that just means it's time to buy the dip?
💬 SQUARE TALK:
Are these Russia sanctions the start of a new crypto war? Or just FUD before the weekend pump?
Drop your hottest take below. 👇
And follow for more news that actually matters.
#Bitcoin  #Ethereum  #CryptoNews  #Altcoin  #Hack

Shibarium Bridge Hack: $2.3M Stolen — SHIB Dev Dares Hacker to Take the Cash! 🔥
📰 Summary
The $2.3 million Shibarium Bridge hack has taken a dramatic twist!
Developer Kaal Dhairya sarcastically challenged the hacker who drained millions through a flash loan exploit, saying:
> “Yo, Shibarium bridge attacker, wake up — grab free cash before the offer expires this time and do something right.” 😏
Meanwhile, K9 Finance, Shibarium’s staking partner, raised its bounty from 5 ETH to 20 ETH if the hacker returns 248 billion stolen KNINE tokens, which are now worthless after being blacklisted on-chain.
---
💡 What is a Flash Loan Exploit?
A flash loan lets users borrow massive amounts of crypto instantly — as long as they repay it within the same transaction.
Hackers exploit this feature by manipulating system logic or token prices to trick protocols into sending them funds.
In this case, the attacker gained control of 10 out of 12 validator keys, fooling the bridge into withdrawing $2.3M in $ETH , SHIB, ROAR, and KNINE tokens.
---
⚙️ What Happened Next
To protect the network and investors, the Shibarium team introduced new security measures, including:
🚫 Suspicious wallet blocking to stop blacklisted tokens from moving
⏳ 7-day withdrawal delay for BONE tokens
🤝 Partnership with dRPC.org for secure and reliable RPC systems
🧩 Incident response template to handle future attacks quickly
K9 Finance also increased its bounty to 20 ETH, hoping to recover the stolen tokens.
---
📉 Market Impact
The hack caused short-term volatility in the SHIB ecosystem.
Prices dipped briefly as panic selling hit, but quick action and better security restored investor confidence.
Analysts believe that if the hacker returns the KNINE tokens or accepts the bounty, it could improve sentiment and spark a mild price recovery for SHIB.
---
🧠 What This Means for Investors
Always verify official announcements before reacting to rumors.
Avoid suspicious wallets or tokens recently blacklisted on-chain.
Stay informed — transparency and security updates are key to DeFi survival.
A hack may shake trust, but redemption can rebuild it. 🐾💸
---
📊 Key Stats
Event Detail
Hack Amount $2.3 Million
Stolen Tokens $ETH , SHIB, ROAR, KNINE
Validator Keys Compromised 10 of 12
Bounty Raised 5 ETH → 20 ETH
Attack Date September 12, 2025
Flash Loan Type Instant Borrow & Repay Exploit
---
🔍 Image Search Keywords (for Google)
Use these exact phrases to find matching charts or infographics for your article:
“Shibarium bridge hack 2025 infographic”
“Shibarium flash loan exploit diagram”
“SHIB $2.3M hack timeline”
“K9 Finance 20 ETH bounty poster”
“Validator keys Shibarium hack graphic”
“KNINE token blacklist chart”
---
🧩 SEO-Friendly Tags
#Shibarium #SHİB #crypto #Hack #DeFi

DeFi-світ знову отримав урок із безпеки. 3 листопада Balancer, один із найстаріших DeFi-протоколів, зазнав масштабного зламу через помилку в своєму модулі Composable Stable Pools.

🔍 Що сталося:
Вразливість у механізмі відкладених розрахунків дозволила хакерам маніпулювати балансами пулів. Через неточні коефіцієнти масштабування під час операцій EXACT_OUT відбувалося округлення “в менший бік”, і ліквідність тимчасово падала нижче мінімального порогу — цього вистачило, щоб вивести кошти з пулів.
Спочатку активи рухалися через внутрішні сховища Balancer v2, після чого зловмисники розбивали вивід на низку транзакцій, щоб ускладнити відстеження.
🎯 Хто постраждав:
Удар припав на Composable Stable v5, де вже сплив захисний період.Пули v6 встояли — завдяки системі Hypernative, яка автоматично призупинила роботу після виявлення аномалій.
Команда підтвердила: атака не торкнулася Balancer v3 та інших типів пулів. Але копії протоколу у BEX і Beets також постраждали.
⚙️ Як рятували ситуацію:
StakeWise DAO повернула $19 млн в osETH і $1,7 млн в osGNO (≈73,5% втрат);Berachain призупинив мережу для хардфорка;Sonic Labs заморозила гаманці зловмисників;Gnosis тимчасово обмежила роботу мосту;Monerium заблокувала 1,3 млн EURe;BitFinding і MEV-боти Base повернули ще ≈$750 тис.
🧩 У Balancer зазначають, що попередньо ухвалена структура Safe Harbor (BIP-726) допомогла швидко координувати дії між командами й партнерами.
Наразі точна сума збитків невідома — остаточний звіт оприлюднять після аудиту. Але головний висновок очевидний:
навіть найрозумніші смарт-контракти залишаються вразливими, якщо в них є одна непомічена кома.
📚 Хочете розуміти, як DeFi працює всередині — і як уникнути таких пасток?
Підписуйтесь, щоб не пропустити розбір найважливіших кейсів безпеки у світі Web3.
#balancer #defi #Hack #security #crypto

🌐 The Crypto Market in Shock!
In 2024, total Web3 losses exceeded $2.9 billion. From DeFi to metaverses, no sector was spared. 🚨 The main vulnerability? Access control issues, responsible for 78% of all attacks.

💎 DeFi: Fewer losses, but major hacks persist
Losses decreased by 40%, but still reached $474 million. The biggest incident was the hack of Radiant Capital, costing $55 million.

🏦 CeFi in Trouble: Losses Double!
CeFi losses skyrocketed to $694 million. Notable attacks include a key leak at DMM Exchange ($305 million) and a multisignature vulnerability at WazirX ($230 million).

🎮 Games and Metaverses Lose Hundreds of Millions
The gaming sector reported $389 million in losses, accounting for 18% of all attacks. 🎲

🚩 Rug Pulls Shift to Solana
Scammers moved from BNB Chain to Solana, driven by the growing popularity of meme coins. 📈

🎯 Presales Turn into Traps: $122.5 Million Stolen in One Month!
In April 2024, scammers executed 27 fraud schemes using presales. 💰 They also exploited the names of celebrities and influencers to deceive investors.

👨‍💻 Phishing and North Korean Hackers
Phishing attacks led to $600 million in stolen funds, while North Korean hackers siphoned off $1.34 billion.

⚠️ Stay Alert!
Crypto scams are becoming increasingly sophisticated. 🛡️ Behind every meme coin, a trap could be waiting!
#Hack #scamriskwarning #solana

🔹 Fake Zoom meeting invites and update links deceive Web3 teams

🔹 New NimDoor malware infiltrates macOS with advanced evasion techniques

🔹 Attackers steal browser data, passwords, and Telegram chats

Web3 and Crypto Companies Under Siege by NimDoor Malware
Security experts at SentinelLabs have uncovered a sophisticated malware campaign targeting Web3 startups and cryptocurrency firms. The attacks, linked to North Korean groups, use a combination of social engineering and technical stealth to deploy NimDoor malware, written in the rarely used Nim programming language to bypass antivirus detection.

The Setup: Fake Zoom Meetings Through Telegram
Hackers initiate contact via Telegram, posing as known contacts. They invite victims to schedule meetings via Calendly, then send them links to what appear to be Zoom software updates. These links lead to fake domains like support.us05web-zoom.cloud, mimicking Zoom's legitimate URLs and hosting malicious installation files.
These files contain thousands of lines of whitespace, making them appear "legitimately large." Hidden within are only three crucial lines of code, which download and execute the real attack payload.

NimDoor Malware: Spyware Specifically Targeting macOS
Once executed, the NimDoor malware operates in two main phases:
🔹 Data extraction – stealing saved passwords, browsing histories, and login credentials from popular browsers like Chrome, Firefox, Brave, Edge, and Arc.

🔹 System persistence – maintaining long-term access through stealth background processes and disguised system files.
A key component specifically targets Telegram, stealing encrypted chat databases and decryption keys, giving attackers access to private conversations offline.

Built to Survive: Evasion and Reinstallation Techniques
NimDoor employs a range of advanced persistence mechanisms:
🔹 Automatically reinstalls itself if users try to terminate or delete it

🔹 Creates hidden files and folders that look like legitimate macOS system components

🔹 Connects to the attacker’s server every 30 seconds for instructions, disguised as normal internet traffic

🔹 Delays execution for 10 minutes to avoid early detection by security software

Difficult to Remove Without Professional Tools
Because of these techniques, NimDoor is extremely hard to remove with standard tools. Specialized security software or professional intervention is often required to clean infected systems completely.

Conclusion: Modern Cyberattacks Now Look Like Calendar Invites
Attacks like NimDoor prove how cleverly North Korean groups mimic daily workflows to penetrate even cautious targets. Fake Zoom links and innocent-looking updates can lead to full system compromise.
Users should never download updates from unofficial sources, always verify domain names, and stay vigilant against unexpected software prompts or invitations.

#CyberSecurity , #NorthKoreaHackers , #Web3Security , #CryptoNews , #Hack

Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“

The cross-chain bridge of Orbit Chain was compromised by an exploit, which led to the loss of Tether, DAI, USDC, wBTC, and ETH with a combined value of around $81.4 million.
The vulnerability was exploited by the exploiter, who then transferred funds to a new wallet.
A weakness in the bridge or a hack in the centralized server was discovered as the primary reason by the blockchain security company SlowMist which was responsible for the investigation.
It has been revealed that a hack occurred on Orbit Bridge, which is a protocol for interchain communication that is utilized for asset conversion. A total of around $81.4 million worth of cryptocurrency were stolen from the system.
The Orbit Bridge was struck by a number of significant discharges.
An vulnerability that was worth $81.4 million was apparently used by hackers to ring in the New Year with Orbit Bridge. A number of significant outflows were discovered by the blockchain security company SlowMist and the on-chain intelligence service LookOnChain. These outflows were encountered via the cross-chain protocol.
According to the latter, the Orbit Bridge was responsible for the transfer of 30 million Tether (USDT), 10 million DAI, 10 million USDCoin (USDC), 231 wBTC (worth over $10 million), and 9,500 ETH (worth around $21.5 million) in five distinct transactions.

After doing a preliminary examination from the outside, SlowMist came to the conclusion that either the centralized server has been compromised or there is a potential vulnerability in the Orbit Chain bridge. A further in-depth investigation is currently being carried out by the company in order to obtain additional information on the attack.
The hacking of Orbit Chain has been confirmed.
Orbit Chain reported the hack on its protocol in a tweet that was published not too long ago on X. The tweet described the breach as a "unidentified access" to the bridge. A comprehensive investigation into the underlying cause of the assault is currently being carried out by the company, which has said that it is actively collaborating with law enforcement authorities in order to identify the perpetrator of the incident.
#hack #OrbitChain