Hot News

Hot News

副标题

The Malaysian mobile brand meen has formally disclosed that its latest product will be unveiled at 2:00 PM on August 15th at W Hotels in Kuala Lumpur (The Great Room, Level 9). During this highly a...
2023-08-10
Founded in 2020, FameEX is a secure and globally recognized cryptocurrency exchange that has achieved significant milestones over the past few years. As they gear up for their third-year anniversar...
2023-03-08
Bored Apes Yacht Club has risen from virtual avatars to a super IP in the NFT industry with implemented commercial applications, making it a role model for many other PFP successors. Affected by su...
2023-03-08
The Ready Player One, jointly created by several internationally renowned institutions such as Golden Collar U.S.Venture Capital Inc, is a digital ecological platform for games based on blockchain ...
2023-02-01
7*24

7*24

副标题

In the wake of the global digitalization wave, digital finance is increasingly becoming a vane of the financial industry. Digital Finance Fusion Bank (DFF), as a leader in this revolution, has beco...
2023-11-21
In a vibrant and increasingly complex cryptocurrency market, choosing a trading platform that prioritizes security is crucial. HOUNAX, a globally leading cryptocurrency trading platform, is becomin...
2023-07-28
REVOLUTIONZING CRYPTO BINARY TRADINGBinary Guardian, a leading platform in the world of cryptocurrency trading, is proud to announce the launch of its revolutionary Guardian Automation BOT trade sy...
2023-07-11
In the global cryptocurrency market, YOMAEX is demonstrating its strong capabilities as a digital currency platform, with its exceptional global influence and unique advantages in global developmen...
2023-07-07
YOMAEX Exchange, hailed as a global leader in digital asset trading, has recently attracted significant capital attention, once again affirming its leading position in the global digital asset trad...
2023-07-01
NaaS (NASDAQ:NAAS) announced its unaudited financial results for the first quarter of 2023 on June 16 (UTC+8). The company achieved a remarkable milestone with revenue reaching RMB 36.2 million (or...
2023-06-16
In June 2023, the globally acclaimed NFT financial service platform, NFTfi, introduces its new digital asset investment venture, NFTfi-Asia, in the Asia-Pacific region, opening up a plethora of luc...
2023-06-15
Since time immemorial, games have been an integral part of everyday life. With the evolution of computer technology, games have transitioned from offline to online platforms. In recent years, the g...
2023-05-24
According to the Vorsi team, Vorsi Web3.0 Academy was initiated and established in Q1 of 2023, with Dr. Russell as a core member of the team. Russell is a computer science Ph.D. from the University...
2023-05-24
Amidst the continuous advancement of blockchain technology and artificial intelligence, the digital economy has emerged as the prevailing global trend. Against this backdrop, the Kredivo Project ha...
2023-05-18
On 13 March 2023, CyberConnect, the decentralized social graph protocol is culminating in the wrap of Connected 2023, a Web3 social hackathon organized in partnership with BNBChain, the world’s lar...
2023-03-15
Decentralized social collaboration network DreamLand will be officially launched in mid-March, and its first NFT, Chill Parrot, will be released in April. DreamLand will open Founding Member partne...
2023-03-10
BitValue announced the Investment in Spield Algorithm, which is Shaping the Future of AI Quantitative Analysis.Web3 is rapidly changing the world, and an increasing number of people are recognizing...
2023-03-08
PLXYER, pronounced "player", has announced the launch of their all-in-one Web3.0 game portal platform. This Gaming platform is designed to provide players with a thrilling gaming experience while o...
2023-03-02
iPeakoin, a fintech institution that facilitates a seamless integration between financial and crypto infrastructure, recently announced the launch of its CaaS (Card as a Service), aiming to bring c...
2023-02-27
Funversy, the first NFT ecosystem built on the BNB network, recently launches its Beta Version and updates the functions of Launchpad, Farm and Trade, is committed to creating a new NFT platform wi...
2022-10-28
dYdX said on its social platform that due to excessive user participation, the activity of depositing more than $500 to get a $25 bonus has been stopped. Yesterday's news, dYdX announced that it wi...
2022-09-02
The data on the Tokenview chain shows that the current total holdings of Grayscale is 18.276 billion US dollars, and the trust premium rates of mainstream currencies are as follows: BTC, -32.69% ET...
2022-09-02
Yuga Labs metaverse project Otherside released a new promotional video on its social platform, and hinted that the project may announce new plans in Q4.
2022-09-02
The market shows that Ethereum hit $1,600 per piece, up 1.27% on the day.
2022-09-02

FBI issues alert over cybercriminal exploits targeting DeFi

Issuing time:2022-08-30 15:27

Smart contracts governing DeFi platforms identified as a particular cause for concern for the enforcement agency.


Screen Shot 2022-08-30 at 11.44.13.png

The U.S Federal Bureau of Investigation (FBI) has issued a fresh warning for investors in decentralized finance (DeFi) platforms, which have been targeted with $1.6 billion in exploits in 2022.

In an Aug. 29 public service announcement on the FBI's Internet Crime Complaint Center, the agency said the exploits have caused investors to lose money — advising investors to conduct diligent research about Defi platforms before using them, while also urging platforms to improve monitoring and conduct m rigorous code testing.

The law enforcement agency warned that cybercriminals are out in force to take advantage of "investors' increased interest in cryptocurrencies," and "the complexity of cross-chain functionality and open source nature of Defi platforms."

The FBI observed cybercriminals exploiting vulnerabilities in smart contracts that govern DeFi platforms in order to steal investors' cryptocurrency.

In a specific example, the FBI mentioned cases where hackers used a "signature verification vulnerability" to plunder $321 million from the Wormhole token bridge back in February. It also mentioned a flash loan attack that was used to trigger an exploit in the Solana DeFi protocol Nirvana in July.

However, that's just a drop in a vast ocean; according to an analysis from blockchain security firm CertiK in M, since the start of the year, over $1.6 billion has been exploited from the DeFi space, surpassing the total amount stolen in 2020 and 2021 combined.

FBI recommends due diligence, testing

While the FBI admitted that "all investment involves some risk," the agency has recommended that investors research DeFi platforms extensively before use, and when in doubt, seek advice from a licensed financial adviser.

The agency said it was also very important that the platform's protocols are sound, and to ensure they have had one or more code audits performed by independent auditors.

Typically, a code audit involves a review of the platforms underlying code to identify vulnerabilities or weaknesses which could be exploited.

According to the FBI, any DeFi investment pools with an "extremely limited timeframe to join" or "rapid deployment of smart contracts" should also be approached with extreme caution, especially if they have not conducted a code audit.

Crowdsourced solutions, generating ideas or content by soliciting contributions from a large group of people, were also flagged by the law enforcement agency.

"Open source code repositories allow unfettered access to all individuals, to include those with nefarious intentions."

The FBI said DeFi platforms can also do their part to increase security by testing their code regularly to identify vulnerabilities, along with real-time analytics and monitoring.

An incident response plan and informing users about possible platform vulnerabilities, hacks, exploits, or other suspicious activity are also among the recommendations.

However, failing all that, the FBI urges American investors targeted by hackers to contact them through the Internet Crime Complaint Center or their local FBI field office.