News list for " SlowMist"
On April 3, the SlowMist team issued a warning that when it tested the search results of mainstream AI assistants on imToken's official website, it found that some AI returned phishing links. The unique address of imToken's official website is: token (.) im. SlowMist reminds users not to use AI as a safe search engine, be sure to download wallets from official channels and manually verify the URL.
4月3日消息,SlowMist团队发布警告称,其在测试主流AI助手对imToken官网的搜索结果时,发现部分AI返回了钓鱼链接。imToken官网唯一地址为:token(.)im。SlowMist提醒用户切勿将AI当作安全搜索引擎,务必从官方渠道下载钱包,并手动核验网址。
SlowMist 在 X 发文表示,在向币安 CEO CZ 报告安全漏洞并获得感谢后,该团队发现在 pump.fun 和 Four.Meme 平台上出现了多个以"SLOWMIST"、"SlowMist"等变体命名的模因币。 SlowMist 安全团队特此提醒,这些模因币均为诈骗项目,并强调 SlowMist 从未发行过任何代币,呼吁用户保持警惕。
According to the official announcement of SlowMist, the team has detected potential suspicious activity related to the $MIN token (BSC chain) and has reminded users to be vigilant and pay attention to the safety of their funds.
据SlowMist官方公告,团队检测到与$MIN代币(BSC链)相关的潜在可疑活动,并提醒用户提高警惕,注意资金安全。
SlowMist founder Cosine posted on social media that there is no problem with the Safe contract, the problem is in the non-contract part, the front end is tampered with and forged to achieve the effect of deception. This is not an isolated case. North Korean hackers have succeeded in this method several times last year, such as the WazirX incident (stolen $230 million, Safe multi-signature), Radiant Capital incident (stolen $50 million, Safe multi-signature), DMM (stolen $305 million, Gonco multi...
Slow Mist Technology Chief Information Security Officer 23pds said on the X platform that Bybit attackers took away safe owner privileges in a forged signature attack. It is speculated that more than one macOS or Windows computer must have been charged, and the attacker may have stayed on the intranet for a while, able to monitor internal chat, transfer time and other information.
SlowMist said on the X platform that the following are some details of the Bybit hackers: - The malicious implementation contract was deployed at 7:15:23 UTC 2025-02-19: 0xbDd077f651EBe7f7b3cE16fe5F2b025BE2969516; 2025-02-21 14:13:35 UTC, the attacker used three owners to sign a transaction to replace the Safe implementation contract with a malicious one: 0x46deef0f52e3a983b67abf4714448a41dd7ffd6d32d32da69d62081c68ad7882; - malicious upgrade logic is embedded in STORAGE [0x0] via DELEGATECALL: 0...
According to a report by SlowMist, the security team has detected potentially suspicious activity related to BOLT tokens, and SlowMist warns users to remain vigilant.
