A web3 membership designed to empower you with cutting-edge insights and knowledge, powered by Access Protocol. Learn more ›
Welcome! 👋 You are connected to CryptoSlate Alpha. To manage your wallet connection, click the button below.
If you don’t have enough, buy ACS on the following exchanges:
Access Protocol is a web3 monetization paywall. When users stake ACS, they can access paywalled content. Learn more ›
Disclaimer: By choosing to lock your ACS tokens with CryptoSlate, you accept and recognize that you will be bound by the terms and conditions of your third-party digital wallet provider, as well as any applicable terms and conditions of the Access Foundation. CryptoSlate shall have no responsibility or liability with regard to the provision, access, use, locking, security, integrity, value, or legal status of your ACS Tokens or your digital wallet, including any losses associated with your ACS tokens. It is solely your responsibility to assume the risks associated with locking your ACS tokens with CryptoSlate. For more information, visit our terms page.
The gaming platform had unknowingly hired a North Korean hacker as one of its core developers.
Cover art/illustration via CryptoSlate. Image includes combined content which may include AI-generated content.
Munchables, a web3 game operating on the Ethereum layer-2 network Blast, has successfully recovered the $62.5 million it recently lost to an exploit.
The platform disclosed that the attacker voluntarily provided all relevant private keys to facilitate the return of user funds. The keys holding the $62.5 million worth of ETH, 73 WETH, and the main owner key were shared.
Pacman, the founder of the layer-2 network, corroborated this development, stating that the hacker returned all stolen funds without demanding any ransom.
Furthermore, Pacman announced that $97 million had been safeguarded in a multisig account controlled by Blast’s core contributors. These funds will soon be redistributed to Munchables and other affected protocols.
He added:
“It’s important that all dev teams, whether directly affected or not, learn from this and take precautions to be more thorough on security.”
On March 26, Munchables alerted the crypto community about an exploit on its platform. On-chain investigator ZachXBT promptly identified the address holding the pilfered 17,413 ETH.
According to ZachXBT’s findings, the exploit occurred due to the involvement of a North Korean hacker among Munchables’ core developers.
Further investigation by ZachXBT showed that Munchables had engaged four developers linked to the hacker. Their GitHub usernames were NelsonMurua913, Werewolves0493, BrightDragon0719, and Super1114.
These four accounts likely belonged to a single individual, as they endorsed each other for the job and financially supported each other’s wallets.
Solidity developer 0xQuit said the hacker executed the exploit by creating a backdoor to allocate a balance of 1,000,000 ETH before upgrading the contract implementation. This enabled them to withdraw once the protocol accumulated a significant balance.
This incident sheds light on a common tactic employed by North Korean hackers who infiltrate crypto projects as developers and embed backdoors to facilitate future theft.
Ethereum developer Keone Hon referenced an earlier thread outlining signs that a developer might be a North Korean hacker. According to him, these individuals often favor GitHub names such as SupertalentedDev726 or CryptoKnight415, incorporate numbers into their usernames and emails, and use Japanese identities.
He said:
“If you see someone with a cringe bio, a bunch of badges, and a bunch of big repos with only 1 commit (due to squashing the history) just be cautious.”
Oluwapelumi values Bitcoin’s potential. He imparts insights on a range of topics like DeFi, hacks, mining and culture, underlining transformative power.
Also known as “Akiba,” Liam is a reporter, editor and podcast producer at CryptoSlate. He believes that decentralized technology has the potential to make widespread positive change.
North Korea’s crypto thefts reach $750 million in 2023, UN report reveals.
North Korea-backed hackers have diversified their laundering strategies in response to sanctions imposed by Western authorities.
The attackers impersonate legitimate venture capital firms on Telegram and use meeting and scheduling apps to launch sophisticated phishing attacks.
The accused faces charges of sanctions violations and extradition to the U.S.
All tokens embroiled in SEC’s scrutiny, however, see mixed fortunes against Bitcoin amidst legal turmoil.
Celsius bankruptcy proceedings inches closer to its end.
Algorand’s price and DeFi volume have suffered severely in the wake of its classification as a security by the SEC.
Algorand’s ALGO token has been on a downward price movement since the SEC classified it as a security.
CryptoSlate’s latest market report dives deep into the correlation between Bitcoin and these indices to determine Bitcoin’s viability as a hedge against macroeconomic variables and global market volatility.
Disclaimer: Our writers’ opinions are solely their own and do not reflect the opinion of CryptoSlate. None of the information you read on CryptoSlate should be taken as investment advice, nor does CryptoSlate endorse any project that may be mentioned or linked to in this article. Buying and trading cryptocurrencies should be considered a high-risk activity. Please do your own due diligence before taking any action related to content within this article. Finally, CryptoSlate takes no responsibility should you lose money trading cryptocurrencies.
Must-read crypto news & insights. Delivered daily.
Ethereum is a decentralized, open-source blockchain platform that enables the creation of smart contracts and decentralized applications (DApps).
ZachXBT is an independent on-chain sleuth who is popular on revealing bad actors in the crypto space.
Dune’s integration with TRON expands data analytics horizons, fostering transparency and innovation in the blockchain ecosystem.
Disclaimer: By using this website, you agree to our Terms and Conditions and Privacy Policy. CryptoSlate has no affiliation or relationship with any coin, business, project or event unless explicitly stated otherwise. CryptoSlate is only an informational website that provides news about coins, blockchain companies, blockchain products and blockchain events. None of the information you read on CryptoSlate should be taken as investment advice. Buying and trading cryptocurrencies should be considered a high-risk activity. Please do your own diligence before making any investment decisions. CryptoSlate is not accountable, directly or indirectly, for any damage or loss incurred, alleged or otherwise, in connection to the use or reliance of any content you read on the site.
© 2024 CryptoSlate. All rights reserved. Disclaimers | Terms | Privacy
Please add “[email protected]“ to your email whitelist.
Stay connected via
source
Source: www.cryptoslate.com
