News list for " human cosine"

Slow Mist Cosine: zkLend was attacked due to a contract safeMath library vulnerability

According to SlowMist founder Cosine Monitor, Starknet's on-chain lending protocol zkLend was hacked on February 12, losing more than $9.50 million. The reason for the attack is that the safeMath library used in its market contract uses direct division when performing division calculations, resulting in a rounding vulnerability in the number of zTokens that actually need to be destroyed when calculating withdrawals. The attacker is taking advantage of this vulnerability to profit. The on-chain d...

clock
2025-02-13 05:50:59
Slow Mist Cosine: BitmapPunks contract that is driving up Ethereum Gas fees is not open-source verified

SlowMist founder Cosine tweeted, "BitmapPunks, which is driving up Ethereum Gas fees, is indeed a fully-onchain, ultra-large, hybrid collection. However, the contract is not open-source verified, and it is not carefully checked whether there is any risk."

clock
2025-01-02 03:41:48
Slow Mist Cosine: DEXX hacker EVM address continues to change, and funds continue to collect

SlowMist founder Cosine tweeted that the EVM (ETH/BSC/BASE) address of DEXX hackers continued to change, and many funds (including some Meme) continued to collect to the address starting with 0xffb9 from around 7:00 in the morning. On-chain data shows that the address currently holds about 440,000 US dollars in assets.

clock
2024-12-06 00:54:07
Slow Mist Cosine: DEXX attackers exchanged a large number of tokens for SOL early this morning

The founder of Slow Mist, Cosine Yu X, wrote that in the early morning of this morning, various value tokens on the Solana address related to the DEXX attacker were exchanged for SOL. At present, these SOL have not been transferred out. In addition, the attacker's EVM (ETH/BSC/BASE) addresses have begun to experience abnormal tests, and there has been no large-scale abnormal.

clock
2024-11-29 00:10:50
Slow Mist Cosine: Attackers use the XSS vulnerability of the Cointelegraph website to trick target users into opening the Cointelegraph official website

Slow Mist founder Cosine X issued a statement saying that the attacker used the XSS vulnerability of the Cointelegraph website to trick the target user to open the Cointelegraph official website (with XSS malicious script), so: - malicious script loading execution; - The address bar is set to https://cointelegraph [.] com/not-public/drafts/article-1033 at first glance, I thought it was an official unpublished draft; - Sign in with X box; - After clicking Sign in with X, open X's third-party app ...

clock
2024-11-28 01:16:58
Slow Mist Cosine: DEXX Attacker Associated Address began exchanging a large number of tokens for SOL at 4am this morning.

The founder of Slow Mist, Cosine Yu X, wrote that at around 4 a.m. this morning, various value tokens on the Solana address related to the DEXX attacker were exchanged for SOL. At present, these SOL have not been transferred out. In addition, the attacker's EVM address has not been changed for the time being.

clock
2024-11-28 00:19:31
Slow Mist Cosine: The Sui ecological project Oceans Gallerie is at high risk, and it is suspected that the project party has withdrawn liquidity

The founder of Slow Mist, Cosine, wrote that the Sui ecological project OceansGallerie (@OceansGallerie) is indeed quite strange. The token pool is too controlled, the total amount of tokens 10 billion OCEANS, Holders is too concentrated, and the tokens have fallen dozens of times in less than a week of issuance. Now the pool is less than 20,000 dollars. The address of abnormal operations is strongly related to the address of OCEANS token issuance. According to X user @tongyiju, Cetus Protocol t...

clock
2024-11-27 03:38:48
Cosine: It is certain that the private key of the stolen DEXX user has been leaked, and the leakage method still needs to be investigated

"Pay attention to the DEXX trading tool, many users have been stolen, and there are only a few stolen users who have requested us from various channels in the morning, and the losses are large or small. The theft time is concentrated, and the loss is estimated to be not small. Some users found out in time that they had withdrawn part of their funds. The stolen crowd is related to using DEXX as a washing dog/speculation MEME. The private key belongs to DEXX centralized hosting, which must have be...

clock
2024-11-16 00:22:35
Slow Mist Cosine: DAI L2 Deployer Private Key Leaked, Leaving Recently Deployed L2 DAI Contracts as "Honeypots"

SlowMist founder Cosine said that the private key of DAI L2 Deployer was leaked, resulting in some recently deployed L2 DAI contract addresses being "honeypot" addresses controlled by attackers. The address has no associated risk on Optimism and Arbitrum, but the Base and Polygon network contracts are not secure. The mainnet DAI contract is secure.

clock
2024-09-04 04:09:32
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.