据 ChainCatcher 报道,Chainalysis 报告称,过去六个月至少 3670 万美元从源代码未公开验证的协议中被盗,涉及 Truebit、Trusted Volumes、Aperture Finance 和 Ekubo 等。攻击者通过反编译原始字节码寻找漏洞,AI 辅助的漏洞利用开发加速了这一趋势。
Chainalysis 指出,未验证合约缺乏社区审查,通常也不在漏洞赏金计划覆盖范围内。报告称,AI 反编译和漏洞分析门槛下降,使攻击者可系统性扫描大量未验证合约;建议协议验证所有合约代码、审计实际部署合约、扩大漏洞赏金覆盖,并实施实时链上监控。
Chainalysis:未验证合约半年被盗3670万美元
2026-06-10 01:14:01
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Previous article:
Telegram发布Apple Watch应用Next article:
港股ADR普遍下跌,期指夜市跌182点
