PANews February 21st – On the X platform, on-chain analyst Specter reported that IoTeX may have experienced a private key leak event, with all assets from its token safe being transferred out by attackers, resulting in a total loss of approximately $4.3 million.
On-chain data shows that the attacker transferred multiple contract assets, including USDC, USDT, IOTX, PAYG, WBTC, and BUSD. The stolen assets have since been exchanged for ETH, with about 45 ETH bridged across chains to the Bitcoin network. The incident is still under further investigation.
The disclosed attacker addresses are as follows:
0x6487B5006904f3Db3C4a3654409AE92b87eD442f
1PN2BoHU4buDQWcrNHk9T9NBA2qX8oyYEc
135oSa2fobTxtHtm5dwTREDyRY2o1DG1Aw
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
An American man was indicted for attacking Uranium Finance, with $54 million at stake and a maximum of 30 years in prison.
March 30, U.S. prosecutors charged Jonathan Spalletta of Maryland, accusing him of repeatedly attacking the decentralized exchange Uranium Finance since 2021, involving $54 million. Spalletta faces computer fraud and money laundering charges, with a maximum total sentence of up to 30 years in prison. He allegedly profited illegally by manipulating transaction processes and used the proceeds to buy collectible items. Prosecutors emphasized that crypto assets are also protected by law.
GateNews56m ago
Malware Infiniti Stealer targets Mac users’ encrypted wallets by forging verification codes
GoPlus Security reports that a type of malware called Infiniti Stealer carries out attacks against Mac users by impersonating a Cloudflare verification page, stealing crypto wallets and credentials. The malware bypasses security mechanisms by manually executing commands; it can steal browser data and developer keys and has the ability to evade detection.
GateNews12h ago
Pi Network Scam Alert as Fake 2FA Links Target Users
A wave of scams is targeting Pi Network users during the Second Migration phase, with fake 2FA links tricking individuals into sharing wallet passphrases. Scammers exploit user urgency, leading to unauthorized wallet access. Users must prioritize security and only interact through official channels to protect their funds.
Coinfomania14h ago
Michael Saylor once again compared STRC to money market funds, sparking a retail frenzy.
Strategy company founder Michael Saylor compared his stock STRC to a money market fund on CNBC, drawing attention. STRC has a dividend of up to 11.5%, but it is not a true money market fund and carries high risks. Despite the SEC stating that its risks are significant, Saylor still attracts a large number of retail investors, and analysts remind that caution is needed to distinguish between them.
GateNews14h ago
LiteLLM Hacker Poisoning Incident: 500,000 Credentials Leaked, Cryptocurrency Wallets at Risk of Being Stolen, How to Check if You've Been Affected?
LiteLLM recently suffered a supply chain attack, resulting in the leak of hundreds of GB of data and 500,000 account credentials. The attackers exploited a vulnerability in GitHub's CI/CD to steal Trivy access credentials, subsequently inserting malicious code. This incident highlights the importance of supply chain security, and developers should enhance permission management and monitoring.
区块客14h ago
NPR Host Hacked by Crypto Scammers - U.Today
NPR host Scott Simon's X account was hijacked by cryptocurrency scammers, prompting a warning from colleague Steve Inskeep. The account has been locked to prevent further scams, highlighting a growing trend of targeting prominent journalists for fraud.
UToday15h ago
