Security Incidents

Lido officially disclosed that the ZKsync wstETH bridge contract has a potential vulnerability, but it has not been exploited, and holders are unaffected. Lido has paused new fund deposits to the contract and plans to fix and restore functionality after the next governance vote.

ChainCatcher reports that sDOLA LlamaLend was subjected to a flash loan price manipulation attack, resulting in a loss of approximately $240,000. The attacker manipulated the sDOLA price, causing multiple accounts' health factors to drop below 0, triggering liquidation conditions and profiting from it.

GoPlus Chinese Community issued a warning that North Korean hackers have published 26 malicious packages on the npm registry. These packages can execute hidden malicious code and steal user information. Users should verify the source of software packages and avoid using the listed malicious packages to prevent privacy leaks and asset loss.

Former Los Angeles Police Officer Eric Halem was convicted of kidnapping and robbing a teenage Bitcoin holder, valued at approximately $350,000. The case highlights the risks of cryptocurrency in crime, reminding investors to protect digital assets against theft and scams. Sentencing will take place on March 31.

OpenZeppelin conducted an audit of EVMbench and found that the training data was contaminated, and at least four high-risk vulnerabilities are invalid forgeries. This affects the AI model's security assessment capabilities. If the AI has previously "seen" vulnerability reports, it will not accurately reflect its ability to discover new vulnerabilities. This highlights issues with the credibility of benchmark test data and methodologies.

Japanese Prime Minister Sanae Takaichi strongly denies involvement in the issuance of the cryptocurrency called SANAE TOKEN, which is promoted in her name and has caused social panic. The latest reports indicate that the coin's price has plummeted by over 50%. The issuer claims that the coin promotes political participation but was not authorized by the government, leading to public condemnation and legal issues. Investors should stay vigilant to avoid financial scams.

Curve Finance is investigating an attack on the sDOLA LlamaLend market, which exploited a price oracle vulnerability affecting borrowers collateralized with sDOLA, while lenders were unaffected. The team will ensure the security of LlamaLend V2.

Odaily Planet Daily reports that cross-chain smart contract platform Neutron announced on X that a white-hat hacker discovered a vulnerability through its bug bounty program. A fix is currently being developed, and the order book and super vault (deposits, withdrawals, etc.) functions have been suspended. They expect to relaunch on March 9. Neutron added that the platform's funds are currently secure and unaffected, and users do not need to take any further action.

Gate News Update, March 03 — According to CoinMarketCap data, as of press time, AIXBT (aixbt) is trading at $0.02, up 16.20% in the past 24 hours. The highest price reached $0.02, and the lowest dipped to $0.02. The current market capitalization is approximately $23.9 million, an increase of $3.33 million compared to yesterday. AIXBT is a real-time cryptocurrency market intelligence platform that offers project tracking, market insights, and trading signals. Through data-driven analysis, it helps users identify market trends and trading opportunities. ## Recent Important News about AIXBT: 1️⃣ **Security Incident Draws Market Attention** — AIXBT’s dashboard experienced an unauthorized access event, resulting in ETH losses. The security vulnerability initially drew market concern, but the project team subsequently took action.

Boston authorities in the United States have filed charges in a cryptocurrency dating scam case, where the victim was defrauded of $327,829.72 in Tether (USDT) by the scammer "Linda Brown" through a dating app. The case fits the "pig butchering" scam pattern, where the scammer first builds emotional trust before inducing investment. USDT, due to its stability and anonymity, has become the main tool for scam funds, highlighting the severity of current crypto scams and the enforcement challenges.

Former Mt. Gox CEO Mark Karpeles has proposed a Bitcoin hard fork to recover 80,000 BTC stolen from the exchange over a decade ago. The hard fork would see the BTC, worth $5 billion and currently held by a single wallet, moved to a new address without the requirement of the original private k

TRM Labs report indicates that artificial intelligence is reshaping digital financial crime, with illegal cryptocurrency flows expected to reach $158 billion by 2025. AI-driven scam cases have surged by 500%. Autonomous AI agents accelerate money laundering, lower the barriers to evasion, and lead to a compliance crisis. Legal liabilities are difficult to trace, requiring international cooperation to resolve jurisdiction conflicts.

Decentralized anonymous lottery protocol Foom Cash lost approximately $2.26 million due to a security vulnerability. White hat hackers intervened in time to recover $1.84 million. The issue stemmed from a misconfiguration of the Groth16 verifier. White hat hackers collaborated with security companies to protect the funds and received bounties and security fees.

The Korea National Tax Service apologized after publicly sharing a photo of a hardware wallet seed phrase, which led to the theft of $4.8 million worth of cryptocurrency. The government has requested police intervention and will strengthen regulations on digital asset management.

Curve Finance has launched an investigation into the attack on Inverse Finance, confirming a loss of approximately $240,000. The cause of the attack is related to the sDOLA price oracle mechanism and the amount of sDOLA in the market. This incident serves as a reminder that more stringent measures are needed for treasury-type collateral management. The Curve team is currently assessing security measures to ensure the safety of similar markets in the future.

Federal prosecutors in North Carolina seized over $61 million USDT related to a cryptocurrency scam known as "pump and dump." Authorities traced stolen funds through a complex network of wallets used for laundering money from global victims. The scam often starts with fake romantic relationships to gain trust, leading victims to invest in false trading platforms with fabricated profits. When attempting to withdraw funds, victims face blockages or fake fees. This action is part of a broader effort to eliminate illegal profits and deter online scams exploiting digital assets.