Security Incidents

_Ledger Donjon exposed a MediaTek vulnerability that extracts Android wallet seed phrases in under 45 seconds, affecting millions of devices. CVE-2025-20435._ Ledger Donjon has uncovered a serious MediaTek vulnerability. It lets attackers pull wallet seed phrases from Android phones in seconds.

On March 15th, a suspected hacker address received 7,400 ETH from Tornado Cash, orchestrating liquidation events for CAKE and THE collateral that resulted in approximately $2.15 million in losses for Venus. The address manipulated THE price through complex operations, ultimately leading to the liquidation of its collateral on Venus, though substantial borrowed funds remain unpaid. Analysis suggests this event may have been a strategy employed to profit on a certain CEX.

Gate News reports that on March 15, Venus Protocol issued a security announcement stating that during the investigation of abnormal activity in the THE liquidity pool, preventive measures were taken to prevent further misuse, and all borrowing and withdrawal operations of THE tokens were immediately suspended. This measure will remain in effect until the investigation is concluded. Venus Protocol stated that other markets were unaffected and will continue to operate normally.

BNB Chain lending protocol Venus Protocol appears to have suffered a flash loan attack, resulting in massive liquidation of the token THE. The attacker has obtained approximately $3.6 million in assets, with liquidations ongoing. Currently, approximately 42 million THE tokens are awaiting liquidation.

CCTV 315 Gala exposed the AI large model data "poisoning" industry chain, involving a business named GEO. Service providers charge fees to make client products stand out in AI models, spawning press release companies that become key links in data manipulation.

On March 15, Tether froze 11,960,680 USDT on a Tron chain address using the blacklist function of smart contracts. This action typically stems from law enforcement requests related to money laundering and fraud. Over the past several years, Tether has cumulatively frozen more than $4.2 billion in USDT.

Regarding the hacking incident at Wuhan Anxun Technology, a certain CEX CEO Star clarified that the incident was not due to wallet security vulnerabilities. The attackers controlled users' devices through trojan software to steal information. At the same time, he emphasized that users need to strengthen device security and avoid installing suspicious software.

The China Internet Finance Association has issued a risk warning cautioning that the OpenClaw application is vulnerable to attacks due to high permissions and weak security configurations, which could lead to data theft and transaction manipulation. The association recommends that financial consumers use caution when using the application and take appropriate security measures, such as not granting operational permissions and monitoring for vulnerability fixes.

Address poisoning attacks on Ethereum users are increasingly automated, deceiving victims into sending money to fake wallets. Recent data reveals significant losses and highlights the economic incentives driving these attacks, emphasizing the need for caution among users.