In 2022, bad actors have turned their attention to crypto and the decentralized finance (DeFi) sectors. Cybercriminals have stepped up their efforts to steal funds from users by attacking different protocols. As a result, hackers managed to cash out over $2 billion from their criminal activities.
Related Reading: Celsius Wants To Reopen Withdrawals For Some Customers, Here’s Why
The U.S. Federal Bureau of Investigation (FBI) issued a warning against another potential spike in cyber attacks against crypto and DeFi. The law enforcement agency and other legal entities in this country have identified several hacker groups with ties to rogue nations.
As Bitcoinist reported, North Korean-backed hacker groups seem to be the most prolific at attacking DeFi and crypto projects. The infamous Lazarus Group and others have netted over $1 billion in crypto theft. The funds are allegedly used to support the country’s nuclear program.
The U.S. FBI said the following about the alleged growing trend of cyber attacks from bad actors to crypto and its DeFi sector:
The FBI has observed cyber criminals exploiting vulnerabilities in the smart contracts governing DeFi platforms to steal investors’ cryptocurrency. The FBI encourages investors who suspect cyber criminals have stolen their DeFi investments to contact the FBI via the Internet Crime Complaint Center or their local FBI field office.
Data provided by the FBI indicates that hackers have managed to steal around $1.3 billion in cryptocurrencies from January to March 2022 alone. This represents a 72% increase when compared to Q1 2021. DeFi platforms are the main focus of these attacks.
U.S. authorities believe the spike in DeFi adoption, the “complexities” of using smart contracts and DeFi protocols, and the open-source nature of the sector have made it particularly vulnerable to bad actors.
ETH’s price moving sideways on the 4-hour chart. Source: ETHUSDT Tradingview
The law enforcement agency highlighted some of the modus operandi utilized by hackers to steal from crypto investors. Protocols known as “bridges”, enabling users to trade assets from different blockchains, have been some of the most affected in the spike of cyber-attacks.
Hackers have managed to exploit a “signature verification vulnerability” in a DeFi bridge and grant permission to withdraw over $320 million from the platform. Other attacks target protocols that offer “flash loans”.
Hacks have been able to manipulate other vulnerabilities in the sector, the FBI said, including price oracles and trading products with “price calculation errors”. For the users, the FBI recommended conducting research on potential investment and DeFi protocol before sending money to the platform.
Related Reading: Celsius Wants To Reopen Withdrawals For Some Customers, Here’s Why
In addition, the FBI recommended users look into the projects’ security audits to verify their level of security. For developers, the law enforcement agency recommended:
Institute real time analytics, monitoring, and rigorous testing of code in order to more quickly identify vulnerabilities and respond to indicators of suspicious activity. Develop and implement an incident response plan that includes alerting investors when smart contract exploitation, vulnerabilities, or other suspicious activity is detected.
Liquidium is a platform for borrowing and lending Bitcoin using Ordinals as collateral, leveraging Bitcoin's security. Launched in December 2022, it has raised significant funding and executed a major airdrop, positioning itself as a key player in Bitcoin DeFi.
WeatherlyOpenAI’s reassignment of Aleksander Madry, its head of AI safety, to a new role focusing on AI reasoning has raised concerns about its commitment to safety. This change comes amid increasing scrutiny from lawmakers and ongoing investigations into the company's practices.
AnaisSkytopia, a Web3 entertainment brand merging gaming, animation, and novels, secured $2.4 million in seed funding. These funds will advance development, enhance the ecosystem, and foster community growth. Will this investment birth a revolutionary new metaverse?
CatherineZeebit, a new decentralised casino on the Solana blockchain, offers transparent, provably fair games with quick, borderless transactions and no need for intermediaries. Despite its innovative approach and strong partnerships, its success will depend on overcoming network challenges and the anonymous nature of its team.
WeatherlyVice President Kamala Harris received a culturally significant endorsement from pop star Charli XCX, responding in a way that resonated online. With younger voters crucial in the 2024 election, is Harris aiming to appeal to Gen Z?
KikyoWong Cheung-kit, known as "Coin Young Master," and his associate Mok Tsun-ting face charges related to cryptocurrency scams, including fraud, theft, and money laundering. They are wanted by Interpol for allegedly defrauding investors through a fraudulent mining machine scheme and promoting the failed JPEX exchange, which resulted in significant financial losses.
AnaisMonkeyBit completed a $2 million seed funding round and launched a global ambassador recruitment programme this month. Aiming to build the next Web3 social amusement ecosystem, MonkeyBit plans to release its $MONK token in Q3. Will you go bananas for these monkeys?
CatherineRootData, founded by Pan Yubo and Quan Yu, is transforming Web3 navigation with its comprehensive database of over 13,000 projects and real-time data integration. Recently, they secured $1.25 million in funding and partnered with OKX Wallet to enhance user access and decision-making.
WeatherlyIn just one month after its launch, Yescoin has attracted over 18 million players globally. Partnering with TON, Yescoin hints at the launch of a potential token, $YES, with excitement building around possible listing on major exchanges.
KikyoOpenAI's new SearchGPT combines AI with real-time web data to provide quick, accurate answers with source links. Currently in prototype testing, it aims to make finding information faster and more efficient, challenging Google's dominance and adding to the evolving AI search competition.
Anais