PANews February 21st – On the X platform, on-chain analyst Specter reported that IoTeX may have experienced a private key leak event, with all assets from its token safe being transferred out by attackers, resulting in a total loss of approximately $4.3 million.
On-chain data shows that the attacker transferred multiple contract assets, including USDC, USDT, IOTX, PAYG, WBTC, and BUSD. The stolen assets have since been exchanged for ETH, with about 45 ETH bridged across chains to the Bitcoin network. The incident is still under further investigation.
The disclosed attacker addresses are as follows:
0x6487B5006904f3Db3C4a3654409AE92b87eD442f
1PN2BoHU4buDQWcrNHk9T9NBA2qX8oyYEc
135oSa2fobTxtHtm5dwTREDyRY2o1DG1Aw
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Ledger Security Team Discovers MediaTek Processor Vulnerability That Could Lead to Wallet Mnemonic Theft
The team behind the crypto wallet Ledger has discovered a vulnerability in the secure boot chain of MediaTek processors. Attackers can extract encryption keys through physical access, affecting approximately 25% of Android phones. The vulnerability can be fixed with a patch, but it highlights the risks of storing keys on insecure devices. Users are advised to update promptly.
GateNews2h ago
AI code failure: Stop idolizing AI; Claude's coding caused a DeFi platform to lose $1.78 million
Moonwell Lending Protocol experienced a security incident on-chain due to an oracle configuration error, leading to a severe underestimation of cbETH asset prices. This event was caused by a logic error in AI-generated code, which was exploited by liquidation bots for profit. Although no traditional hacking was involved, users suffered a loss of $1.78 million. The incident highlights the oversight in AI programming review processes and emphasizes the importance of human oversight in the context of technological automation.
PANews3h ago
The Ministry of Industry and Information Technology releases OpenClaw intelligent agent security risk prevention recommendations, proposing four response strategies for financial transaction scenarios.
On March 11, the Ministry of Industry and Information Technology issued recommendations on preventing security risks associated with the open-source intelligent agent OpenClaw, emphasizing its potential risks in financial transactions. The "Six Musts and Six Don'ts" response strategy was proposed, such as implementing network isolation, secondary confirmation, and strengthening supply chain audits to prevent erroneous transactions and account hijacking.
GateNews4h ago
Aave experiences $27 million in abnormal liquidations, with 34 accounts being liquidated; the official promises full compensation
Aave experienced an abnormal liquidation on March 11th, with approximately $27 million in lending positions liquidated due to an internal security module CAPO parameter misconfiguration, resulting in a 2.85% underestimation of wstETH valuation. The liquidation affected 34 accounts, with about 10,938 wstETH forcibly closed. Chaos Labs has committed to fully compensate affected users and emphasized the need to improve risk management mechanisms. This incident highlights the risks posed by internal configuration errors within decentralized finance systems.
動區BlockTempo5h ago
Lido responds to liquidation event: a DeFi lending protocol oracle error caused the liquidation, unrelated to the Lido protocol
Lido responded to the liquidation event on March 10 caused by the CAPO oracle price error, stating that there will be no bad debt and that affected users will be fully compensated. The Lido Earn product was unaffected, and user funds are safe.
GateNews5h ago
BWA Chairman Dilip Chenoy Advocates Investor Education and Responsible Crypto Ecosystem
BWA Chairman Dilip Chenoy participated in the Q & A.
He called for thorough independent verification before crypto investment.
The immediate step for victims is to register a complaint with the authorities.
Dilip Chenoy, Chairman of Bharat Web3 Association (BWA), interacted with the media and pa
TheNewsCrypto8h ago
