LIVE比特丛林 BitJungle
@Square-Creator-3a6da7477c14
比特丛林BitJungle,是一家区块链安全公司,致力于数字资产安全保护、安全事件调查以及被盗数字资产找回等安全产品及服务;服务内容涵盖数字资产溯源、安全事件调查、智能合约审计、安全评估、反洗钱风控等。
Following
Followers
Liked
Shared
See original
PINNED
Recently, a user suffered a large number of bitcoin thefts, and the criminal gang was overseas. Fortunately, BitJungle responded quickly and assisted the police in quickly solving the case through the advanced technology of the Zhong Kui traceability system, and helped the user stop the loss of about 20 million RMB. See the fund transfer map below for details. If you encounter a similar situation, please contact us immediately. #比特币安全 #保护资产 #比特丛林
See original
BitJungle: 4502 BTC stolen from Japanese DMM company, possibly due to short address fraud caused by negligence of wallet operator
Background
On May 31, 2024, Japanese cryptocurrency trading platform DMM Bitcoin suffered the seventh largest cryptocurrency hacker attack in history. Its digital wallet was "accessed without authorization", resulting in the theft of 4,502 bitcoins (about 2 billion RMB). Preliminary analysis shows that this incident may be caused by the following three vulnerabilities: short address fraud, address replacement attack, and internal system attack.
BitJungle will use the Zhong Kui traceability system to conduct an in-depth analysis of this attack. The Zhong Kui traceability system can not only fully analyze every detail of the hacker attack, but also help you understand the real reasons behind the incident and prevent future security threats. For more details, please read on.
On May 31, 2024, Japanese cryptocurrency trading platform DMM Bitcoin suffered the seventh largest cryptocurrency hacker attack in history. Its digital wallet was "accessed without authorization", resulting in the theft of 4,502 bitcoins (about 2 billion RMB). Preliminary analysis shows that this incident may be caused by the following three vulnerabilities: short address fraud, address replacement attack, and internal system attack.
BitJungle will use the Zhong Kui traceability system to conduct an in-depth analysis of this attack. The Zhong Kui traceability system can not only fully analyze every detail of the hacker attack, but also help you understand the real reasons behind the incident and prevent future security threats. For more details, please read on.
See original
BitJungle | In-depth exposure of fake offline OTC scams. Such cases have occurred frequently recently. Please stay vigilant to avoid property losses.
As the cryptocurrency market is booming, more and more investors choose to buy and sell cryptocurrencies through over-the-counter (OTC) transactions. Although OTC transactions provide users with a flexible and convenient way, they also hide many risks. The following is a typical case of OTC fraud. Bitconglin assisted the police in solving the case and successfully recovered the defrauded assets. We hope it can sound a warning to investors.
This picture is a fraud diagram and is only used for anti-fraud purposes
Case Background
A is a young man who is keen on cryptocurrency investment. In order to pursue higher profits and lower fees, he decided to try over-the-counter (OTC) trading. In a cryptocurrency investment group, he saw an attractive advertisement in which a person who called himself "agent B" posted information about selling Bitcoin at a price lower than the market price.
This picture is a fraud diagram and is only used for anti-fraud purposes
Case Background
A is a young man who is keen on cryptocurrency investment. In order to pursue higher profits and lower fees, he decided to try over-the-counter (OTC) trading. In a cryptocurrency investment group, he saw an attractive advertisement in which a person who called himself "agent B" posted information about selling Bitcoin at a price lower than the market price.
See original
Recently, the BitJungle team has assisted the local police in successfully solving more than 100 Bitcoin (BTC) thefts and successfully recovered the stolen digital assets. The amount involved in this case is as high as 25 million RMB.
In this theft case, the BitJungle team cooperated with the police to conduct in-depth investigation and analysis. Through technical means and traceability capabilities, we successfully tracked and locked the thief's information and the stolen digital assets, which have now been recovered and returned to the victim.
BitJungle has always been committed to digital asset security and crime prevention. We will continue to cooperate with local police, spare no effort to track criminals, and recover stolen digital assets to maintain the security of the digital asset field.
In this theft case, the BitJungle team cooperated with the police to conduct in-depth investigation and analysis. Through technical means and traceability capabilities, we successfully tracked and locked the thief's information and the stolen digital assets, which have now been recovered and returned to the victim.
BitJungle has always been committed to digital asset security and crime prevention. We will continue to cooperate with local police, spare no effort to track criminals, and recover stolen digital assets to maintain the security of the digital asset field.
See original
Beware! Web3 fake wallet scams are rampant, hundreds of millions of funds have been stolen!
Web3 fake wallet scams are frequent, and scammers use various methods to induce users to download fake apps. Once users log in and use them, they will find that their assets have been stolen. Some scammers will also package the excuse of investment to further induce users to deposit more assets. Such scams are still active.
Scammers often create fake digital wallet applications and publish them to app stores. These fake applications may impersonate well-known digital currency wallets and are promoted through search engine ads, social media platforms, fake information websites, etc. to attract users to download and use them, but in fact they may be malware that steals users' private keys or login credentials.
Scammers often create fake digital wallet applications and publish them to app stores. These fake applications may impersonate well-known digital currency wallets and are promoted through search engine ads, social media platforms, fake information websites, etc. to attract users to download and use them, but in fact they may be malware that steals users' private keys or login credentials.
See original
BitJungle | CertiK and Kraken’s so-called “white hat” behavior poses legal risks and ethical disputes
Background
In June 2024, the cryptocurrency community was shaken by a sudden dispute between the famous blockchain security company CertiK and the well-known cryptocurrency exchange Kraken. Kraken received a bug bounty report on June 9, saying that an "extremely serious" vulnerability had been discovered. Although the team fixed the vulnerability within a few hours, during the in-depth investigation, it was found that the vulnerability was exploited by three accounts, resulting in the withdrawal of nearly $3 million in funds from the Kraken treasury.
Kraken treated the incident as a criminal case and planned to coordinate with law enforcement agencies. Later, security company CertiK claimed that it had discovered a security vulnerability in Kraken, and that the vulnerability could result in hundreds of millions of dollars in losses. For a time, the two sides in the confrontation each insisted on their own opinions. Kraken regarded CertiK's behavior as a "crime", while CertiK asked Kraken to "stop any threats to white hat hackers."
In June 2024, the cryptocurrency community was shaken by a sudden dispute between the famous blockchain security company CertiK and the well-known cryptocurrency exchange Kraken. Kraken received a bug bounty report on June 9, saying that an "extremely serious" vulnerability had been discovered. Although the team fixed the vulnerability within a few hours, during the in-depth investigation, it was found that the vulnerability was exploited by three accounts, resulting in the withdrawal of nearly $3 million in funds from the Kraken treasury.
Kraken treated the incident as a criminal case and planned to coordinate with law enforcement agencies. Later, security company CertiK claimed that it had discovered a security vulnerability in Kraken, and that the vulnerability could result in hundreds of millions of dollars in losses. For a time, the two sides in the confrontation each insisted on their own opinions. Kraken regarded CertiK's behavior as a "crime", while CertiK asked Kraken to "stop any threats to white hat hackers."
See original
BitJungle breaks through Tornado's currency mixing mechanism and catches the coin thief
This is a case of coin theft that occurred in Guangdong last week. BitJungle, after breaking through the Tornado coin mixing mechanism and failing to interview the coin theft suspect, finally cooperated with the police to arrest the coin theft suspect and recorded the negotiation process with the coin theft suspect.
A Slice of Pizza
A non-fiction detective novel written by Eric, the founder of BitJungle
I handed him a piece of pizza, but he just took a small bite and then looked nervous and confused as if he was looking for something.
I was a little hungry, so I ate a few slices in no time, then went straight to the sofa in the office and lay down to take a nap...
A Slice of Pizza
A non-fiction detective novel written by Eric, the founder of BitJungle
I handed him a piece of pizza, but he just took a small bite and then looked nervous and confused as if he was looking for something.
I was a little hungry, so I ate a few slices in no time, then went straight to the sofa in the office and lay down to take a nap...
See original
Hello everyone, we are engaged in blockchain security and are committed to protecting the blockchain world. Our core business is to track and combat hacker activities and help users recover stolen cryptocurrency digital assets. Whether the loss of assets is caused by hacker attacks or other malicious acts, we can provide strong technical support and solutions.
See original
BitJungle: Panoramic view of the whole process of UwU Lend suffering consecutive attacks of $19.3 million and $3.7 million
Background
Recently, the UwU Lend platform has suffered two large-scale hacker attacks in succession. The first attack occurred on Monday, causing a loss of about $19.3 million (about 130 million RMB). A few days later on Thursday, the platform was attacked again, with a loss of about $3.7 million (about 25.9 million RMB). Experts suspect that these two incidents may have been caused by the same attacker.
Hackers took advantage of the manipulation loopholes of the price oracle to manipulate the price of sUSDe through flash loan operations, repeatedly pledged and liquidated, and eventually stole a large amount of funds. As the guardian of blockchain security, BitJungle conducted a detailed analysis of this incident through the Zhong Kui traceability system, revealing the hacker's methods and capital flows behind it.
Recently, the UwU Lend platform has suffered two large-scale hacker attacks in succession. The first attack occurred on Monday, causing a loss of about $19.3 million (about 130 million RMB). A few days later on Thursday, the platform was attacked again, with a loss of about $3.7 million (about 25.9 million RMB). Experts suspect that these two incidents may have been caused by the same attacker.
Hackers took advantage of the manipulation loopholes of the price oracle to manipulate the price of sUSDe through flash loan operations, repeatedly pledged and liquidated, and eventually stole a large amount of funds. As the guardian of blockchain security, BitJungle conducted a detailed analysis of this incident through the Zhong Kui traceability system, revealing the hacker's methods and capital flows behind it.
See original
How to avoid fake wallet downloads:
1) Download from official channels: Download wallet apps only from official app stores (such as Apple App Store, Google Play Store, etc.) or official websites whenever possible. Avoid downloading apps through third-party websites or unknown sources, as these sources may provide fake or modified apps.
2) Verify app developers: Before downloading an app, make sure to check the identity and reputation of the developer. Official wallet app developers usually disclose their identity information on the app store or official website, and usually have a reputation in the community or forums.
3) Check reviews and comments: Before downloading an app, check the reviews and comments of other users. Genuine wallet apps usually have many positive reviews, while fake or unsafe apps may have negative reviews or warnings.
4) Be cautious when clicking on links: Avoid clicking on links from unknown sources or suspicious links, especially through emails, text messages, or social media. These may be phishing attacks used to lure users into downloading malware.
5) Education and awareness: Regularly raise awareness about cybersecurity and wallet security, and learn how to identify and avoid online scams and malware attacks.
1) Download from official channels: Download wallet apps only from official app stores (such as Apple App Store, Google Play Store, etc.) or official websites whenever possible. Avoid downloading apps through third-party websites or unknown sources, as these sources may provide fake or modified apps.
2) Verify app developers: Before downloading an app, make sure to check the identity and reputation of the developer. Official wallet app developers usually disclose their identity information on the app store or official website, and usually have a reputation in the community or forums.
3) Check reviews and comments: Before downloading an app, check the reviews and comments of other users. Genuine wallet apps usually have many positive reviews, while fake or unsafe apps may have negative reviews or warnings.
4) Be cautious when clicking on links: Avoid clicking on links from unknown sources or suspicious links, especially through emails, text messages, or social media. These may be phishing attacks used to lure users into downloading malware.
5) Education and awareness: Regularly raise awareness about cybersecurity and wallet security, and learn how to identify and avoid online scams and malware attacks.
See original
Signing of a strategic cooperation agreement
On January 27, BitJungle signed a strategic cooperation agreement with the Qingdao Criminal Police Detachment. BitJungle officially became a strategic partner of the Qingdao Criminal Police Detachment.
The two parties will deepen cooperation in jointly combating crime, especially cross-border combating hacker crimes, and strive to create more social value at the social level. #Police-Enterprise Cooperation #Cross-border Combating Hacker Crimes#CorporateSocial Responsibility
See more
👉
https://link.medium.com/1ndf6CK3YGb
On January 27, BitJungle signed a strategic cooperation agreement with the Qingdao Criminal Police Detachment. BitJungle officially became a strategic partner of the Qingdao Criminal Police Detachment.
The two parties will deepen cooperation in jointly combating crime, especially cross-border combating hacker crimes, and strive to create more social value at the social level. #Police-Enterprise Cooperation #Cross-border Combating Hacker Crimes#CorporateSocial Responsibility
See more
👉
https://link.medium.com/1ndf6CK3YGb
See original
Beware!#Web3fake wallet scams are rampant, hundreds of millions of funds have been stolen!
Scammers use various methods to induce users to download fake apps, and steal their private keys or login credentials by inducing them to log in to their wallets.
So far, BitJungle has received help from multiple fake wallet victims one after another, and the cumulative losses of fake wallet cases have reached 140 million yuan, with the highest loss amount in a single case being 200 BTC.
Through analysis, we can summarize the characteristics of#scamimplementation routines and scam transfers of stolen funds. The following figure shows the#intelligentcoin tracking system Zhong Kui developed by BitJungle, showing the on-chain fund transfer path of a scammer
👇
Scammers use various methods to induce users to download fake apps, and steal their private keys or login credentials by inducing them to log in to their wallets.
So far, BitJungle has received help from multiple fake wallet victims one after another, and the cumulative losses of fake wallet cases have reached 140 million yuan, with the highest loss amount in a single case being 200 BTC.
Through analysis, we can summarize the characteristics of#scamimplementation routines and scam transfers of stolen funds. The following figure shows the#intelligentcoin tracking system Zhong Kui developed by BitJungle, showing the on-chain fund transfer path of a scammer
👇
n May 31, 2024, DMM Bitcoin in Japan suffered the 7th largest crypto hack ever, losing 4502 BTC (~$300M USD). Possible causes: short address scams, address replacement attacks, and internal system breaches. Bit Jungle's Zhong Kui Traceback System will dissect this attack. #DMMBitcoin
