Go offline with the Player FM app!
E2 - Inverse Hydra 4/9/2022
Manage episode 325060017 series 3337136
https://hackmd.io/@idegen/E2-Inverse-Hydra
1) Ronin Bridge Attack update
- Sky Mavis raises more than 150 million to reimburse hacked funds lead by Binance. and including Paradigm, A16, and others. Some question this fund raising as centralized bails, while questions loom around the sustainability of Axies Play to Earn model.
- Movement on hacked funds, notably 300 ETH to Tornado Cash
2) Seven Lapsus$ group hackers arrested
Why this?
Infamous crypto hackers, sim swappers, and all around general obnoxious blackhats.
When: 4/2
What happened: Former hacking partners turned on this main guy and doxxed him. Law enforcement circled in.
Who:
- group that tried to blackmail Nvida into open-sourcing GPUs (likely so they could be modified and used for crypto mining)
- Mostly teens so names aren’t released but
3) Buble Gum Ape Heist - Bored ape holder “s27” traded their bubble gum ape and matching mutant derivatives with floor value of $567k for a basic ass photoshopped imposter apes
Why cover this?
As if we needed another reminder that NFT markets are sketchy and the absolute simplicity of the scam.
Raises important questions around NFT verification.
What: simple photoshop scam
The victim entered into a direct swap trade with the scammer via a third-party service called swap.kiwi. Unlike regular marketplaces like OpenSea, platforms like swapkiwi allow direct NFT swaps between collectors, reducing transaction (“gas”) fees.Unknown to s27, the other participant in the trade put up knock-off NFTs in exchange for s27’s legitimate Bored Ape and Mutant Apes. The scammer used images of actual Bored Apes to create fake replicas and uploaded the same ones to OpenSea.
-https://www.theblockcrypto.com/post/140702/bored-ape-holder-loses-nfts-worth-567000-to-a-scammer
where: kiwi.swap
Who: anon & s27
When: 4/1-3/2022
It’s unclear if the scammer actually used Photoshop or some other editor.
4) Hydra Darknet Market bust
when: 4/5/2022
what is Hydra:
-BBC
Who?:
Dmitry Olegovich Pavlov is said to be the mastermind behind Hydra.
15M taken in exceptionally clever defi attack.
Inverse Finance is a community of cryptocurrency enthusiasts organized as a Decentralized Autonomous Organization (DAO), started on the 26th of December 2020. Inverse DAO governs and develops a suite of permissionless and decentralized finance tools using blockchain smart contract technology. The code base is open-source, and maintained by the community.Master the Game Of Positive Sum DeFiHere at Inverse Finance, we’re decentralized by design, moving past reckless, outdated systems towards a better solution: Positive Sum Defi. We help you maximize your earnings via revenue sharing, accumulate high yields with sustainable APYs, and benefit from low-cost stable coin borrowing. Join our community to grow and thrive.Why this?
- Oracle Manipulation is not new in defi, but does represent one of the most fascinating classes of exploits in crypto right now. I want to call these defi anti-pattern attacks but that’s probably not the most technically accurate description.
- 15.6 Million is not a huge amount in the world of crypto hacks, but the complexity and style of the attack is worth note.
When: 4/2/2022
Who: anon
What happened:
From Inverse Twitter:
22 episodes
Manage episode 325060017 series 3337136
https://hackmd.io/@idegen/E2-Inverse-Hydra
1) Ronin Bridge Attack update
- Sky Mavis raises more than 150 million to reimburse hacked funds lead by Binance. and including Paradigm, A16, and others. Some question this fund raising as centralized bails, while questions loom around the sustainability of Axies Play to Earn model.
- Movement on hacked funds, notably 300 ETH to Tornado Cash
2) Seven Lapsus$ group hackers arrested
Why this?
Infamous crypto hackers, sim swappers, and all around general obnoxious blackhats.
When: 4/2
What happened: Former hacking partners turned on this main guy and doxxed him. Law enforcement circled in.
Who:
- group that tried to blackmail Nvida into open-sourcing GPUs (likely so they could be modified and used for crypto mining)
- Mostly teens so names aren’t released but
3) Buble Gum Ape Heist - Bored ape holder “s27” traded their bubble gum ape and matching mutant derivatives with floor value of $567k for a basic ass photoshopped imposter apes
Why cover this?
As if we needed another reminder that NFT markets are sketchy and the absolute simplicity of the scam.
Raises important questions around NFT verification.
What: simple photoshop scam
The victim entered into a direct swap trade with the scammer via a third-party service called swap.kiwi. Unlike regular marketplaces like OpenSea, platforms like swapkiwi allow direct NFT swaps between collectors, reducing transaction (“gas”) fees.Unknown to s27, the other participant in the trade put up knock-off NFTs in exchange for s27’s legitimate Bored Ape and Mutant Apes. The scammer used images of actual Bored Apes to create fake replicas and uploaded the same ones to OpenSea.
-https://www.theblockcrypto.com/post/140702/bored-ape-holder-loses-nfts-worth-567000-to-a-scammer
where: kiwi.swap
Who: anon & s27
When: 4/1-3/2022
It’s unclear if the scammer actually used Photoshop or some other editor.
4) Hydra Darknet Market bust
when: 4/5/2022
what is Hydra:
-BBC
Who?:
Dmitry Olegovich Pavlov is said to be the mastermind behind Hydra.
15M taken in exceptionally clever defi attack.
Inverse Finance is a community of cryptocurrency enthusiasts organized as a Decentralized Autonomous Organization (DAO), started on the 26th of December 2020. Inverse DAO governs and develops a suite of permissionless and decentralized finance tools using blockchain smart contract technology. The code base is open-source, and maintained by the community.Master the Game Of Positive Sum DeFiHere at Inverse Finance, we’re decentralized by design, moving past reckless, outdated systems towards a better solution: Positive Sum Defi. We help you maximize your earnings via revenue sharing, accumulate high yields with sustainable APYs, and benefit from low-cost stable coin borrowing. Join our community to grow and thrive.Why this?
- Oracle Manipulation is not new in defi, but does represent one of the most fascinating classes of exploits in crypto right now. I want to call these defi anti-pattern attacks but that’s probably not the most technically accurate description.
- 15.6 Million is not a huge amount in the world of crypto hacks, but the complexity and style of the attack is worth note.
When: 4/2/2022
Who: anon
What happened:
From Inverse Twitter:
22 episodes
All episodes
×Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.