Discover the explosive world of Web3 security in our latest Hack3d report for Q3 2023. With malicious actors draining a jaw-dropping $699 million from Web3 platforms, surpassing earlier losses, and Lazarus Group's relentless assaults continuing from 2022, the stakes have never been higher. Private key breaches, totaling $204 million across fourteen incidents, expose the risks of improper key management in a supposedly decentralized industry. Plus, don't miss the year's biggest reentrancy attack triggered by a Vyper programming language glitch, impacting Curve pools and related protocols. For crypto journalists and savvy investors seeking insights, this Hack3d report is a vital watch, offering a deep dive into the industry's current status, tech adoption trends, and the transformative role of financial institutions in Web3's evolution. Join us in decoding the intricate Web3 security landscape—check out the full report at CertiK.com/resources.
Step into the captivating world of NFTs, where digital assets become one-of-a-kind treasures! NFTs are the digital fingerprints of the future, offering unparalleled uniqueness and security. But as Monkey Kingdom's $1.3 million loss and the Bored Apes Yacht Club's $350,000 hiccup have shown, the digital realm can be tricky to navigate. In this video, we unveil the secrets to safeguarding your NFT kingdom, from spotting red flags and understanding rugpulls to securing your private keys with cold storage and multi-factor authentication. Discover how CertiK's KYC process can be your shield against potential threats, just like CryptoPunks' triumphant comeback after a 2017 hack. Whether you're a creator, investor, or simply an NFT enthusiast, ensure your journey through the world of digital uniqueness is both thrilling and secure. Explore now at certik.com/resources and take your first step into the future of digital ownership!
This week on Security in 60 Seconds, we delve into the latest security threats and vulnerabilities in the digital landscape. CertiK has reported ten incidents over the past week, resulting in a staggering $5.4 million in losses, with the majority attributed to a significant ice phishing incident. The episode also highlights concerning phishing attempts impersonating Stretto, the claims agent for the Celsius bankruptcy proceedings, which managed to circumvent sender policy framework checks. Additionally, we explore the repercussions of a social engineering attack on Balancer's DNS service provider, leading to a loss of $238,000, and discuss the potential of decentralized blockchain-based DNS as a solution. To cap it off, we uncover a new cloud-native cryptojacking operation targeting Amazon Web Services offerings. Stay informed and secure by tuning in to our weekly updates and following us on social media for the latest in Web3 security.