Identify the risks before the danger happens | GoPlusSecurity på Binance Square

Populära artiklar

Bokmärk och gillad

--

Identify the risks before the danger happens

Ansvarsfriskrivning: Inkluderar åsikter från tredje part. Ingen ekonomisk rådgivning. Kan innehålla sponsrat innehåll. Se användarvillkor.

7

0

Utforska de senaste kryptonyheterna

⚡️ Var en del av de senaste diskussionerna inom krypto

💬 Interagera med dina favoritkreatörer

👍 Ta del av innehåll som intresserar dig

E-post/telefonnummer

Relevant kreatör

@GoPlusSecurity

Utforska mer från Creator

🔍 Technical Report: Cork Protocol Exploit May 28th, 2025 | Loss: 3,761.87 ETH (~$12M) 📕Root Cause Analysis: 1️⃣ Market creation lacked permission restrictions, allowing custom parameters for RA, DS, and CT to be freely defined. 2️⃣ The market's RA, DS, and CT parameters lacked logical validation during definition. DS could be set as RA - which was exactly how the attacker exploited in this transaction. 📘Attacker Address: 0xea6f30e360192bae715599e15e2f765b49e4da98 📙Attack Contract: 0x9af3dce0813fd7428c47f57a39da2f6dd7c9bb09 📓Attack Process Analysis: The attacker created 3 types of tokens and 1 Liquidity Token 1️⃣ Hackers purchase 88 weETH8CT-2 from the existing market 2️⃣ Deposit PSM into the existing market to obtain DS and CT 0.004 wstETH => 0.004 wstETH8DS-2 + 0.004 wstETH8CT-2 3️⃣ Attacker creates market 4️⃣ Deposit LV into new market and add liquidity - 0.002 RA(weETH8DS-2) => 0.002 weETH!LV-3 - 0.001 RA(weETH8DS-2) => 0.001 wstETH5CT-3 + 0.001 wstETH5DS-3 - Liquidity: 0.001 RA(weETH8DS-2) + 0.001 wstETH5CT-3 5️⃣ Unlock to get 25 wstETH5DS-3 + 3761.25 wstETH5CT-3 📗Security Recommendations: GoPlus suggests users suspend all interactions with , revoke any previous authorizations, closely follow official announcements, and wait for further updates.

--

Introducing GoPlus-MCP. The first AI-native security layer for Web3. Natively integrated @AnthropicAI , @deepseek_ai , and more. Real-time protection. Seamless integration. Intelligent defense. A new way of thinking about blockchain safety. Try it now a

--

🚦 BREAKING🚦 Risk: $12M Smart Contract Exploit on @Corkprotocol Risk Level: 🔴 HIGH Attack tx: https://t.co/PVWkH0ixRt 🚥 Incident Details: - @Corkprotocol has been exploited - Malicious contract deployed on May 28, 2025 at 11:23:19 UTC - Attacker gained 3,761.87 wstETH, immediately swapped to ETH - Funds currently remain at attacker's address 🛡️ Recommended Actions: - Pause all interactions - Revoke any approvals given to @Corkprotocol - Stay tuned for official announcements 🔍 Situation being actively monitored. Stay alert

--

🚨 SECURITY ALERT: AML Phishing Scam Exposed 🚨 ⚡️ Key Point: Social engineering makes these attacks sophisticated. The scammers exploit users' concerns about "dirty" funds to gain trust. 🚦 Scam Breakdown: 1️⃣ Scammers use fake "AML asset verification" websites 2️⃣ Target users worried about USDT cleanliness post-P2P trades 3️⃣ Fake TG groups (impersonating Trustwallet) lead to phishing sites 4️⃣ Over $50K stolen through wallet authorization scams 5️⃣ Active money laundering through multiple addresses 🛡️ Safety Tips: - ALWAYS verify websites independently - Be cautious with wallet authorizations - Practice asset isolation - use separate wallets - Install security tools like @GoPlusSecurity 🔍 Note: These malicious sites were registered in March 2025 and are part of an organized phishing operation. ⚠️ Malicious Addresses Identified: 0x00006104AB2669b501F2b4a2D31df6a243b20000 0x45C49D9ed4aea4514Ec6eAc5f239A6B8AfC5Da41 0x3380570e7dA720ab7828E3000B85382F2d1a652A 0x04720E2215628c4a687d025BA0a579089eF5A4f7 0x1D2ec76B521587c7728675A76DA8Ff36bC8D8a44 Stay vigilant! 🚀

--

🚨 SECURITY ALERT: AML Phishing Scam Exposed 🚨 ⚡️ Key Point: Social engineering makes these attacks sophisticated. The scammers exploit users' concerns about "dirty" funds to gain trust. 🚦 Scam Breakdown: 1️⃣ Scammers use fake "AML asset verification" websites 2️⃣ Target users worried about USDT cleanliness post-P2P trades 3️⃣ Fake TG groups (impersonating Trustwallet) lead to phishing sites 4️⃣ Over $50K stolen through wallet authorization scams 5️⃣ Active money laundering through multiple addresses 🛡️ Safety Tips: - ALWAYS verify websites independently - Be cautious with wallet authorizations - Practice asset isolation - use separate wallets - Install security tools like @GoPlusSecurity 🔍 Note: These malicious sites were registered in March 2024 and are part of an organized phishing operation. ⚠️ Malicious Addresses Identified: 0x00006104AB2669b501F2b4a2D31df6a243b20000 0x45C49D9ed4aea4514Ec6eAc5f239A6B8AfC5Da41 0x3380570e7dA720ab7828E3000B85382F2d1a652A 0x04720E2215628c4a687d025BA0a579089eF5A4f7 0x1D2ec76B521587c7728675A76DA8Ff36bC8D8a44 Stay vigilant! 🚀

--

Senaste nytt

Rising U.S. Government Debt Concerns Bond Traders

--

U.S. House Speaker Johnson Discusses Tax Bill's Impact on Deficit Reduction

--

Bitcoin(BTC) Drops Below 106,000 USDT with a 1.46% Decrease in 24 Hours

--

Digital Asset Market Clarity Act of 2025 Introduced in U.S. Congress

--

Tether's Profits and Investment Strategy Highlighted at Bitcoin 2025 Conference

--

Cookie-inställningar

Plattformens villkor

Plattformens villkor

Cookie-inställningar