Tag:

scam

Scam Alert: Uniswap V4’s Bunni DEX Loses Millions to Hackers

by admin September 2, 2025

Malicious actors in the cryptocurrency space remain a constant threat to the sector and are not moved by market conditions as they strike during bull and bearish market conditions. Within the last 24 hours, Uniswap V4’s Bunni decentralized exchange (DEX) has been attacked by hackers.

Hackers exploit Bunni DEX vulnerability

According to an update from PeckShieldAlert, a blockchain security firm that monitors the crypto space, hackers have exploited a vulnerability on Bunni DEX. This has led to the hackers stealing approximately $2.4 million worth of assets.

Are there security concerns over Uniswap V4 ecosystem?

The compromise on Bunni DEX by these hackers reemphasizes the need for exchanges to pay attention to safeguarding funds on their platform. This suggests that malicious actors are always scanning the crypto space and attempting to steal. Failure to secure protocols could lead to loss of funds.

Venus Protocol User Drained of $27M in Phishing Scam

by admin September 2, 2025

A BNB Chain-based Venus Protocol user has been drained of about $27 million in a phishing attack, according to on-chain data.

BSC transaction records show that a major account on the platform (0x56…2008) was likely compromised. Security firm PeckShield reported that the user appeared to approve a malicious transaction, giving the attacker control.

Funds were then moved to the attacker’s wallet (0x7fd8…202a), which still shows holdings worth more than $27.1 million.

Most of the stolen funds are in Venus USDT (VUSDT), with over 769 million tokens valued around $19.8 million. Another 276 million Venus USDC (VUSDC), worth about $7.1 million, was also drained. Smaller amounts of Binance-Peg ETH, XRP, and BTCB were included.

PeckShield stressed that this was not a direct exploit of Venus Protocol itself, but rather a wallet-level compromise through phishing. Once approvals are granted, attackers can transfer tokens without further consent, leaving victims little recourse.

Separate Bunni Exploit Costs $2.3M

On the same day, decentralized trading platform Bunni suffered a separate breach worth about $2.3 million.

Blockchain security firm BlockSec flagged the incident, pointing to flaws in Bunni’s Ethereum-based smart contracts. The stolen funds were traced to wallet 0xE04…64f2b, which currently holds roughly $1.33 million in USDC and $1.04 million in USDT. The exact attack method has not yet been disclosed.

Both the Venus phishing scam and the Bunni exploit highlight the biggest dangers in DeFi users falling for scams and loopholes in smart contracts. With more money flowing into the space, these threats aren’t going away anytime soon.

Note: This is a developing story. More details are anticipated.

Also Read: CertiK Flags Suspicious Activity in OLAXBT’s AIO Tokens

Source link

September 2, 2025 0 comments

Crypto Trends

Retired Australian Cop Loses $1.2M in a Crypto Scam in Thailand

by admin August 25, 2025

A retired Australian police officer with a 30-year career, lost nearly 40 million Thai baht (approximately $1.2 million) after falling victim to a cryptocurrency scam in Thailand.

The scammer is a person named Alex, and he is a German national based in Phuket. After targeting Michael, Alex built a relationship with Reinecke over social media. Over the course of a year, Alex introduced him to various crypto investment opportunities during in-person meetings and eventually persuaded him to transfer his life savings.

According to reports, Alex presented Reinecke with dashboards and charts that supposedly demonstrated the potential for 5%-10% monthly returns. However, after receiving the payment, Alex said that the website had crashed. Reinecke pressed Alex, who then revealed that he had misplaced his phone. Alex promptly ceased all communication with Michael.

After realizing that he was probably scammed, Reinecke filed a formal report to the Mueang Udon Thani Police Station, supported by his Thai wife, Areerat Noonyat, and his lawyer, Kritsada Lohitdee, better known as Lawyer Nobi. Reinecke and his wife had saved all this money to purchase a home and establish a cafe.

Online crypto scams on the rise

The number of online crypto scams is on the rise globally. Last week, a scammer posed as a senior UK police officer and stole Bitcoin (BTC) worth approximately $2.8 million in Wales. Also, scammers have been targeting celebrities’ social media accounts for pump-and-dump scams.

Last month, CertiK, a blockchain security firm noted that crypto investors lost more than $2.47 billion to hacks & scams in H1 2025, surpassing all of 2024. Ethereum was the most affected chain, with $1.5B lost across 164 incidents.

Also Read: Telegram CEO Durov Calls French Case ‘Absurd’ a Year After Arrest

Source link

August 25, 2025 0 comments

Crypto Trends

Bitcoin Investor Loses $91 Million to Social Engineering Scam: ZachXBT

by admin August 24, 2025

In brief

An investor lost 783 Bitcoin—$91 million worth a the time—to a social engineering scam, according to on-chain sleuth ZachXBT.
The threat actor allegedly used a coin-mixing service to try to cover their tracks.
ZachXBT alleged that three individuals used similar tactics to steal $243 million worth of Bitcoin a year ago.

A crypto investor lost 783 Bitcoin—valued at $91 million at the time of the attack—on Tuesday after falling victim to a social engineering scam, according to the pseudonymous blockchain sleuth ZachXBT.

The investigator said in a message on Telegram that the victim was approached by individuals impersonating customer support representatives for a hardware wallet manufacturer and a cryptocurrency exchange. The investigator did not identify the impersonated companies in question.

As of this writing, 783 Bitcoin is worth about $88 million, with the price of BTC falling in recent days.

The threat actor made several deposits to Wasabi Wallet, a privacy-focused Bitcoin “mixer” that suspended its services for U.S. users last year, as “the stolen funds began to peel off” across multiple digital wallets, according to ZachXBT.

Social engineering attacks can be lucrative in the cryptosphere. ZachXBT noted in the message that Tuesday’s loss took place exactly a year after he alleged three individuals stole 4,064 BTC, worth $243 million at the time, from a separate unnamed individual using similar tactics.

Two individuals were arrested in connection to the scheme in Florida a month later, after allegedly spending the funds on luxury cars, watches, and real estate. Targeting a creditor of collapsed crypto lender Genesis, they allegedly impersonated members of Google’s support team, convincing the victim to adjust their two-factor authentication settings.

On Aug 19, 2025 a victim fell for a social engineering scam and lost 783 BTC ($91M) after exchange and hardware wallet customer support were impersonated.

The stolen funds began to peel off and deposits to Wasabi were made by the threat actor.

Coincidentally this theft… pic.twitter.com/gglShNo2UC

— ZachXBT (@zachxbt) August 21, 2025

Some social engineering scams are more complex than others. It can be as unsophisticated as “SIM swapping,” where criminals try to convince a mobile service provider to transfer a victim’s phone service to a device in their possession, according to an annual FBI report.

Infamously, an SEC staff member fell victim to a SIM swapping attack in 2024, preceding the debut of spot Bitcoin exchange-traded funds in the U.S. The regulator’s X account prematurely said that the ETFs had been approved, and an Alambama later received a 14-month prison sentence for his role in facilitating the scheme.

The Bureau explicitly warned against social engineering scams in April of last year, warning that impersonating employees is also a common social engineering tactic, along with call forwarding to access victims’ phone numbers and phishing campaigns to collect sensitive information.

Job-seekers aren’t safe either. In February, cybersecurity website Bleeping Computer identified a social engineering scam in which the hacking group Crazy Evil created a fake crypto company to get applicants to download wallet-draining malware.

Daily Debrief Newsletter

Start every day with the top news stories right now, plus original features, a podcast, videos and more.

Source link

August 24, 2025 0 comments

Crypto Trends

Crypto Investor Loses $1.54 Million in Devastating Phishing Scam

by admin August 24, 2025

According to anti-fraud service Scam Sniffer, a cryptocurrency investor recently lost a total of $1.54 million after signing EIP-7702 phishing batch transactions.

Wrapped ETH (wstETH), wrapped BTC (cbBTC), as well as multiple types of other tokens, were stolen during the attack.

Batch transactions, which make it possible to perform multiple operations within a single atomic transaction, were introduced with EIP-7702, which was part of the recent Pectra upgrade.

Even though batch transactions provide a greater level of convenience for legitimate users, they also come with risks. Bad actors can exploit the new feature to trick their victims into singing away their assets.

Such scams typically involve a bogus decentralized finance (DeFi) interface that closely resembles actual applications such as popular decentralized exchange Uniswap.

$1 million worth of NFTs lost

Earlier this week, Scam Sniffer also revealed that someone had lost a total of $1 million of non-fungible tokens (NFTS) as well as other tokens as after signing phishing batch transactions that were actually disguised as Uniswap swaps.

An extremely similar incident also took place earlier this month.

“We’ve spotted multiple victims with this pattern targeting EIP-7702 upgraded addresses,” Scam Sniffer said earlier this month, urging holders to remain vigilant.

Source link

August 24, 2025 0 comments

Crypto Trends

Adele, Future and Michael Jackson Instagram Accounts Hijacked for Crypto Scam

by admin August 23, 2025

In brief

Official Instagram accounts for Michael Jackson, Adele, and Future were apparently hijacked to promote a meme coin.
The token, named after a clothing brand and record label attached to Future, reached a near $900K market cap before plummeting.
The scammer made off with around $49,000 after dumping the majority of the tokens.

The Instagram accounts of superstar musicians Adele, Future, Tyla, and the late Michael Jackson were hacked to promote an unaffiliated Solana meme coin late Thursday.

The hacker used the celebrities’ pages to share now deleted posts of what appears to be an AI rendering of Future, holding an oversized coin inscribed “FREEBANDZ”—the name of a record label and clothing line connected to the rapper, as well as the Solana meme coin promoted in the posts.

The rapper’s account is no longer active on Instagram, and the cryptocurrency does not appear to actually be linked to Future or his apparel brand.

Created on popular Solana token launchpad Pump.fun, the meme coin briefly ran to an all-time high market cap just shy of $900,000 before collapsing by nearly 98%, to $20,000.

Following the run-up, the token’s creator—a Solana address ending in “zcmPHn”—dumped 700 million tokens, or 70% of the total supply in a single transaction, sending the price crashing down in the process.

The rug-puller, likely connected to whoever hijacked the celebrities’ Instagram accounts, walked away with 251.57 SOL, or more than $49,000 at today’s Solana price.

While the posts have been deleted, none of the celebrities that were compromised in Thursday’s hack have made public statements on Instagram or X as of Friday afternoon.

Hacking popular social media accounts to promote meme coins and other crypto scams is not a new phenomenon.

Earlier this year, the UFC’s official Instagram account was hacked, leading to $1.4 million in losses for crypto users. And the creator of the character “Chill Guy” had his account stolen multiple times after a Solana meme coin based on the viral TikTok craze blew up to a $650 million market cap.

Even Barack Obama and Elon Musk have seen their social media accounts swiped and misused in a malicious crypto scheme. Malicious actors typically seek to use prominent social media accounts to pump the value of a coin before selling and crashing the price—a classic pump-and-dump scheme.

Daily Debrief Newsletter

Start every day with the top news stories right now, plus original features, a podcast, videos and more.

Source link

August 23, 2025 0 comments

Crypto Trends

Financial Firm Accused Of Daily Scam Emails In Exchange’s Collapse

by admin August 22, 2025

Trusted Editorial content, reviewed by leading industry experts and seasoned editors. Ad Disclosure

Kroll, a financial and risk advisory firm, is facing a class-action suit after a data breach that exposed personal details of creditors tied to FTX, BlockFi and Genesis.

According to the complaint, the breach in August 2023 let malicious actors obtain sensitive data, and that exposure has led to a wave of phishing attempts against creditors.

Allegations Of Negligence

Based on reports, the lawsuit says Kroll relied only on email for claims outreach, which made the verification process vulnerable.

The suit was filed on Tuesday in a US district court by Hall Attorneys on behalf of FTX customer Jacob Repko and other affected creditors.

The complaint claims that email-only contact created a single point of failure, and that the verification system was compromised, causing delays and, in some cases, loss of funds.

Hall Attorneys say the matter is not just about money but about fixing how creditors are contacted going forward.

Nicholas Hall, who leads the firm handling the suit, has told creditors that eligible participants might get monetary compensation and that court rulings could force operational changes at Kroll.

Repeated Breaches Raise Questions

Reports have disclosed that this is not an isolated incident for Kroll. In March, the firm reportedly suffered another breach that exposed client invoicing, accounts payable and email addresses.

Sunil Kavuri, a prominent FTX creditor, posted on X that he has been getting phishing emails on a daily basis, and he shared screenshots showing scams addressed to him by name.

One screenshot in the report shows messages arriving from Aug. 14 through Sunday, and other users replied saying they had seen the same emails.

Total crypto market cap currently at $3.7 trillion. Chart: TradingView

Third Round Of FTX Reimbursement In September

The suit comes as FTX moves ahead with payouts to creditors. The third round of reimbursement is set to start on Sept. 30 and will total nearly $2 billion.

More than $5 billion went out in the second round in May, and in February the plan covered $1.2 billion for users with claims up to $50,000.

The FTX Collapse

FTX’s collapse in November 2022, spearheaded by its ex-CEO Sam Bankman-Fried, rocked the entire crypto market and erased billions of investor value.

Its failure set off a chain reaction that saw prices of digital assets plummet and raise profound doubts about risk management and transparency in the industry.

For most investors, the case was a watershed, underscoring the weaknesses of centralized platforms and stoking demands for a more extensive regulation and protection in crypto.

Featured image from Quartz, chart from TradingView

Editorial Process for bitcoinist is centered on delivering thoroughly researched, accurate, and unbiased content. We uphold strict sourcing standards, and each page undergoes diligent review by our team of top technology experts and seasoned editors. This process ensures the integrity, relevance, and value of our content for our readers.

Source link

August 22, 2025 0 comments

Crypto Trends

Crypto Scam Sites Make Up a Fifth of ASIC’s Two-Year Takedown

by admin August 22, 2025

In brief

ASIC has removed more than 14,000 scam and phishing websites in two years, with crypto scams making up about 20%.
The regulator will now target fraudulent ads on social media platforms such as Facebook and Instagram.
Investment scams cost Australians nearly $1 billion in 2024, with tactics like “AI washing” emerging as new threats.

Australia’s securities regulator has taken down more than 14,000 scam and phishing websites over the past two years, with crypto schemes accounting for about one-fifth of the total, it said Thursday.

ASIC said it will expand its investment scam website takedown capability to include social media advertisements, in efforts to protect Australian consumers from increasingly sophisticated online fraud schemes. Roughly 3,015 crypto scam websites have been removed, the regulator said.

“ASIC could play a more active role in highlighting the differences between unregulated trading platforms (where investors are much more exposed to scam activities and bad actors) and regulated instruments,” Bridget Nichols, chief commercial officer at Australian crypto asset manager Monochrome, told Decrypt.

The regulator continues removing an average of 130 malicious sites weekly, it said, with the expanded powers aimed at disrupting scammers who use platforms like Facebook and Instagram to direct victims to fraudulent investment sites, according to the statement.

Regulated instruments provide “standard protections for investors,” including disclosures, custody rules, and conflict management, Nichols added.

Investment scams remain the most financially damaging type of fraud affecting Australians, with victims losing $945 million to these schemes in 2024 alone.

“Expanding our investment scam takedown capability to social media ads will help safeguard Australian consumers,” ASIC Deputy Chair Sarah Court said in a statement.

ASIC identified five prominent trends in online investment fraud over the past six months with

“AI washing” is emerging as a key tactic where scammers falsely claim their trading bots use artificial intelligence to generate guaranteed returns, exploiting public interest in the technology.

Scammers are deploying slick website templates and third-party tools like live trading charts, alongside fake news with AI-generated celebrity endorsements and “cloaking” tactics to evade detection.

“ASIC’s traditional toolkit—investigations, court actions, administrative actions—are important, but they can’t combat the scourge of online scams on their own,” Court said.

The crypto enforcement component comes as the assets face increased regulatory scrutiny in the country.

Earlier this month, ASIC charged four Victorian men, including a former barrister, with money laundering offenses linked to moving proceeds from large-scale investment scams to crypto exchanges.

Australia’s financial intelligence agency last month declared crypto a top threat in financial crime crackdown, calling it the “most ambitious overhaul of Australia’s anti-money laundering laws in a generation.”

Security vulnerabilities plague the wider crypto ecosystem, with Mitchell Amador, CEO of Immunefi, telling Decrypt, “This year, if we just look at the first half, we’re on track to lose about 3.6–4% of the entire sector’s assets to hacks, which is insane.”

Daily Debrief Newsletter

Start every day with the top news stories right now, plus original features, a podcast, videos and more.

Source link

August 22, 2025 0 comments

Binance announces Defi App (HOME) listing and 200m airdrop for BNB holders

NFT Gaming

Binance warns of social engineering SMS scam after $91m Bitcoin theft

by admin August 22, 2025

Binance has warned its users about scammers after a victim lost $91 million in a similar attack.

Summary

Binance has warned its users about scammers impersonating its support
One user lost $91 million in Bitcoin from a similar attack
ZachXBT says that attackers don’t appear to be from North Korea

Scammers are increasingly relying on human error to steal funds. On August 21, crypto investigator ZachXBT reported that one user lost $91 million in Bitcoin (BTC) to a social engineering scam.

On Aug 19, 2025 a victim fell for a social engineering scam and lost 783 BTC ($91M) after exchange and hardware wallet customer support were impersonated.

The stolen funds began to peel off and deposits to Wasabi were made by the threat actor.

Coincidentally this theft… pic.twitter.com/gglShNo2UC

— ZachXBT (@zachxbt) August 21, 2025

According to the investigator, the attack, which happened on August 19, was a social engineering scam. Scammers impersonated both the victim’s crypto exchange and hardware wallet support via text messages.

They used this fabricated trust to get the victim to share critical information, which gave the attackers control over the funds.

Binance warns that scammers are targeting its users

ZachXBT did not reveal which exchange the attackers targeted. However, following the attack, Chinese crypto reporter Colin Wu reported that Binance issued a warning about the same type of scams to its users.

Binance: Scammers are sending fake SMS messages pretending to be from Binance. They want to trick you by saying your account is “at risk” and make you call fake support telephone numbers or click dangerous links. Binance will never reach out directly via SMS or phone calls. If… pic.twitter.com/IZtYb5c9Zk

— Wu Blockchain (@WuBlockchain) August 21, 2025

According to Binance, attackers send unsolicited text messages to users, pretending to be from the exchange. Typically, these scams try to make it seem that the user’s account is at risk.

For instance, the messages will warn users that a new device from an unknown location has logged into their accounts. Similarly, the text messages also warn about supposed transfers.

In all cases, attackers prompt users to either call the “support” number or log into a fake website. From there, they are asked to share account information, enabling scammers to take over their wallets.

According to Hacken, social engineering scams led to $600 million in losses in the first half of 2025. This was about 19% of all losses across crypto platforms in the same period.

Source link

August 22, 2025 0 comments

GameFi Guides

$91M in BTC Lost in Scam

by admin August 21, 2025

Blockchain sleuth ZachXBT uncovered a high-profile social engineering attack on Thursday, with the victim losing 783 BTC worth around $91.4 million.

The scam occurred on Aug. 19 and involved the attacker posing as a support agent for a hardware wallet before duping the victim into handing over wallet credentials.

The attack mirrors a string of social engineering attacks over the past year and contributes to an already woeful year in terms of hacks and scams, with crypto investors losing $3.1 billion in the first half of 2025.

Theft wallet (Blockchain.com

Once the malicious transfer was made, the funds began their journey through a typical laundering process, with multiple deposits made into Wasabi Wallet, a privacy tool commonly used to obfuscate the trail.

The hack occurred exactly one year after the $243 million Genesis creditor theft, a landmark event that sent ripples across the industry and led to the arrest of 12 people in California in May.

Source link

August 21, 2025 0 comments