A suspicious transaction involving the cryptocurrency platform Bankroll Status on the BNB Smart Chain (BNB) resulted in a loss of approximately $230,000 on Monday. Initial investigations point to the notorious DualPools hacker as the culprit behind this malicious activity.
Blockchain security firm Cyvers announced this on X.
🚨ALERT🚨Our system has detected a suspicious transaction involving @Bankroll_Status on #BNB with loss of #230k
— 🚨 Cyvers Alerts 🚨 (@CyversAlerts) September 23, 2024
It seems that #dualpools hacker is behind the suspicious transaction!. Our system has detected malicious contract deployment targeting #Bankroll 90 days ago!
Want to… pic.twitter.com/iI9j7H6yC3
According to Cyvers, its security systems detected a malicious contract that was deployed targeting Bankroll Status 90 days ago. This sophisticated BNB hack raised alarms within the cryptocurrency community, underscoring the need for enhanced security measures and vigilance against cyber threats.
The DualPools hacker has a history of executing complex and sophisticated attacks on DeFi protocols. The deployment of the malicious contract 90 days ago suggests meticulous planning and execution. It was likely to evade detection while siphoning significant funds from unsuspecting users.
Past Breaches Similar to the BNB Hack
Another recent attack involved BingX, a cryptocurrency exchange based in Singapore, which resulted in a loss of $26 million.
Blockchain security firm PeckShield reported that hackers accessed the exchange’s hot wallet, transferring over 360 altcoins, including 4.44 million USDT, 1.04 million WUSD, and 9.38 BTCB (approximately $590,000). The stolen assets were sent to a wallet address labeled “0xF7e8” and were quickly converted into Ethereum (ETH) and Binance Coin (BNB).
Another security breach involved Decentraland, the virtual reality platform. According to a post on X by the company, a hacker gained access to the official account, allowing them to post, read messages, and send DMs.
The hack began with a phishing email disguised as a message from X support, which included fake login attempts. In an attempt to secure the account, team members clicked on a link to change the password, inadvertently falling for the phishing scam. This action granted the hacker delegation access to another user, @yeray284, enabling them to post from the compromised account.
The Mysterious Case of WazirX
One of the most prominent security breaches currently includes WazirX, an Indian cryptocurrency exchange that suffered a loss of over $230 million. The incident affected one of the exchange’s wallets, with approximately $100 million in SHIB among the significant user funds lost.
In their update, WazirX stated: “We’re aware that one of our multisig wallets has experienced a security breach. Our team is actively investigating the incident. To ensure the safety of your assets, INR and crypto withdrawals will be temporarily paused. Thank you for your patience and understanding. We’ll keep you posted with further updates.”
Cyvers suspected that the North Korea-backed hacker group Lazarus may be involved in the said attack. Deddy Lavid, co-founder and CEO of Cyvers, told CryptoSlate that the use of TornadoCash for the transactions resembles tactics seen in previous high-profile breaches. He noted that while it’s premature to definitively link this incident to the notorious hacker group, the similarities are concerning.
Read More
- BingX Exchange Suffers $26 Million Hack, Suspends Withdrawals
- Another Security Breach: Decentraland X Account Compromised
- India’s WazirX Exchange Breached, Hacker Siphons Off $230M in Crypto
Gairika holds positions in BTC. This article is provided for informational purposes only and should not be construed as financial advice. The Shib Magazine and The Shib Daily are the official media and publications of the Shiba Inu cryptocurrency project. Readers are encouraged to conduct their own research and consult with a qualified financial adviser before making any investment decisions.