BlockThreat - Week 44, 2021

bZx | Rari | Vesper | Synapse | DarkSide | Squid Game

Welcome to BlockThreat!

This week we are seeing first indications of the North Korean Lazarus APT taking interest in DeFi projects with the $55M compromise of bZx. TWAP price manipulation is a hot new exploit in DeFi space resulting in the compromise of multiple projects. US Government is on the hunt for ransomware actors and anyone supporting them with a recent arrest and a $10M bounty. A rapid increase of social engineering attacks on crypto Discord channels claimed yet another major project, be careful out there! Let’s dive into the news, but first some exciting project news:

Project updates: The newsletter now includes a new paid subscriber section with a growing collection of premium content such as threat indicators for the recent hacks, DeFi exploit PoCs, phishing domains, crypto malware signatures, and others.

I will continue delivering the same free content to help build and secure the blockchain community while providing an added value to professional auditors, blockchain analytics companies, and others who made the leap of making this a full time endeavor.

You can unlock it by upgrading your subscription in your account settings page. Looking forward to your thoughts and suggestions on this new format!

Events

Competitions

Media

News

Scams

Hacks

Vulnerabilities

Research

Premium Content

Indicators

  • Google Adwords phishing domains:

    Indicators:
    phanton[.]app
    phantonn[.]pw
    4vwwwmetamas[.]top
    pancociswap[.]fincancos[.pagedemo[.]co
    www[.]panacakeswap-finannce[.]com
    www[.]poncakeswap-investments[.]com
    uniswap-fath[.]tech

  • Mango Markets fake wallet malware:

    Indicators:
    MD: 51bf6fe3c0583a43e33ef43c8efe2d320
    SHA-1: 091ef6c98197c3e4d5c6feec7a945aae94dee208
    SHA-256: 120213353ac7bd835086e081fb85dfa4959f11d20466fd05789ded3bff30bb11

  • Squid Game scammers:

    Indicators:
    BSC: 0x71D934Aa2119CA3995F702f075d540f7A6b0f728

  • Take Profit Finance exploiter:

    Indicators:
    BSC: 0x2e5f7ead7e26b40e7be8e1f6bd9675cb9f0dfe77

This post is for paid subscribers