EUR/USD 1.16641
0.129%
Gold 4545.41
1.107%
Oil 87.088
-0.662%
USD/JPY 159.256
0.013%
GBP/USD 1.34671
0.174%
GBP/JPY 214.475
0.198%
Browse More
  • English
  • 简体中文
  • 繁體中文
  • Tiếng Việt
  • ไทย
  • Indonesia
Subscribe
Real-time News
On May 30th, it was reported that on May 29th, Zhang Zhigang, Chairman and Party Secretary of the State Grid Corporation of China, and Zhang Wenfeng, General Manager and Deputy Party Secretary, held talks with Qian Chaoyang, Chairman and Party Secretary of China Southern Power Grid Co., Ltd., at the companys headquarters. Both sides stated that State Grid and China Southern Power Grid share common responsibilities in ensuring energy security, promoting energy transformation, building a strong energy nation, and serving the overall economic and social development. They agreed to focus on the 15th Five-Year Plan and further strengthen communication and deepen cooperation in areas such as technological innovation, policy recommendations, mechanism building, the electricity market, and industrial innovation to better promote high-quality development of the energy and power sector.May 30th - Data released today by the National Energy Administration shows that in April, my country issued 237 million green electricity certificates, of which 74.85% were tradable. In April, 71.1 million green certificates were traded nationwide, including 29.72 million green certificates traded for green electricity.On May 30th, it was reported that the U.S. 24th Marine Expeditionary Unit announced on the 29th that it had officially assumed command of the U.S. Southern Commands area of responsibility—specifically, the waters surrounding Latin America. According to the announcement, the unit has deployed over 1,300 Marines and sailors and has completed the handover from the previously deployed 22nd Marine Expeditionary Unit.On May 30th, Qu Guochun, Director of the Equipment Industry Development Center of the Ministry of Industry and Information Technology, stated at the 2026 Equipment Power Forum that after ten years of development, my countrys high-end equipment industry has seen "accelerated progress in catching up, a gradual increase in keeping pace, and a rapid emergence of leaders." The number of key areas at the worlds leading and advanced levels has reached 60.8%, and the industrys scale accounts for over 60% of the overall equipment manufacturing industry. The international competitiveness of the high-end equipment industry has significantly improved. Specifically, intelligent connected new energy vehicles, rail transit equipment, power equipment, information and communication equipment, new energy equipment, aerospace equipment, high-tech ships, and overseas engineering equipment are already at the worlds leading level. Engineering machinery, building materials equipment, and computer equipment are at the worlds advanced level. However, gaps still exist in areas such as industrial machine tools, agricultural machinery, aviation equipment, robots, instruments and meters, semiconductor equipment, and biomedical equipment.On May 30, local time, Canadian Prime Minister Mark Carney met with Wang Yi, member of the Political Bureau of the CPC Central Committee and Minister of Foreign Affairs, in Ottawa on May 29. Wang Yi conveyed greetings from Chinese leaders to Carney, stating that the Prime Ministers successful visit to China had corrected the course of China-Canada relations and put them back on track. The two leaders decision to build a new type of strategic partnership between China and Canada provides strategic guidance for the development of bilateral relations. Facts have proven that the turnaround in China-Canada relations is in the interests of both countries, meets the expectations of all parties, and is the right choice for Canada. There are no fundamental conflicts of interest between the two countries, and there is enormous room for cooperation. China is willing to work with Canada to respect each other, meet each other halfway, seek common ground while reserving differences, strengthen communication, and deepen cooperation to promote the healthy, stable, and sustainable development of bilateral relations. Both sides should uphold multilateralism, adhere to the rule of international law, and maintain strategic autonomy, supporting free trade and an open world economy, which will benefit the people of both countries and inject stability from China and Canada into a volatile world.

CertiK Crypto Report Counts $2.9B in Assets Stolen in 2022

Cory Russell

Oct 10, 2022 11:57

微信截图_20221010101057.png


Cryptocurrency security company CertiK wants you to be aware that it is not secure. The most recent analysis from the organization explores the murky underbelly of the world of digital assets in 2022.


Sadly, the dark underbelly of the industry is more powerful than crypto enthusiasts would want to accept. In only the first three quarters of the year, cyber thieves have seized over $2.9 billion. Additionally, CertiK claims that the methods used by these crooks are only improving.


According to CertiK's mid-year study released at the end of June, cryptocurrency thieves were on pace to siphon off about $1 billion in assets per quarter. As of today, when they released their third-quarter report, it is proving to be true. But the study contains a wealth of information beyond the startling figures on the front. In the previous three months, the firm has recorded 171 escapades. Decentralized finance (DeFi) flash loan assaults and rug-pull scams are only two examples of the vulnerabilities that may be used to steal from projects from inside. The analysis also finds that while being rare, multi-chain attacks have easily caused investors the greatest harm. Only six vulnerabilities were used in Q3 across different chains, yet they are responsible for more than $440 million of the $504 million in theft.


The rise in rug-pull or "exit" frauds in Q3 is one particular finding in this study that merits special attention. 89 scams were reported to have stolen $37 million in the company's Q2 report; in the Q3 report, 98 of these scams took a total of $57 million, a 54% increase. Hugh Brooks, Director of Security Operations at CertiK, explains to InvestorPlace that despite being simple to carry out, these frauds are not going out of style in the middle of a market slump. As Brooks warns investors, "A project being unaudited should raise a significant red alert." "A project could provide a novel approach to a problem or fill a market need, but if it puts your money at risk, it usually isn't a very smart investment."

As report case studies demonstrate, audits are not a panacea.

An exit fraud is one difficulty, but as CertiK notes, they only make up a small portion of 2022's losses.


Projects get a seal of approval from audits, which also provide confirmation that the smart contracts for the project are not in jeopardy. They are not, however, a failsafe method of project security.


The Slope wallet, Wintermute market maker, and Nomad bridge's respective adventures are three of the biggest ones from the quarter, according to CertiK's research. The $8 million in damages suffered by Slope were caused by a flaw in the way the seed words for users' wallets were kept. Once these words were discovered, hackers were able to steal money from victims' wallets one at a time. The creators of Wintermute made the decision to build its market maker on a wallet address that reduces transaction gas costs, which led to the game's vulnerability. Transactions required less CPU resources to settle when addresses had a lot of zeros in them. However, this choice of address allowed a hacker to quickly open the wallet. The losses suffered by Nomad are the result of hackers taking advantage of a weakness in the process of moving assets from one chain to another.


According to Brooks, "[The projects'] losses were not brought on by flaws in the audited smart contract code." In fact, the smart contracts for Wintermute and Nomad have both been reviewed and fixed. They yet fell prey to two of the greatest hacks of the year.

Projects to Secure Web 3.0: Next Steps

These three instances show that audits are insufficient to address an issue that is just becoming worse as time passes. Auditing is a crucial first step, according to Brooks. But a genuine commitment to security also calls for continuing testing, hardening, and monitoring techniques after implementation.


The issue of exit frauds is real. They keep stealing money from investors. However, as Brooks notes, they don't pose the same threat as the more profitable code attacks. The overall market slump has decreased asset prices and reduced the influx of novice investors, who are more prone than average to become victims of an exit scam.


While rug-pullers continue to use the same old techniques, hackers are growing more sophisticated. Rug-pullers rely on a steady supply of less experienced investors to approach them. On the other side, hackers are targeting large projects with many wallets and high liquidity, which makes them a larger danger to the whole crypto ecosystem.


As a result, according to Brooks, initiatives must do more than just get a smart contract audit. "The sector is developing at an incredible rate. To safeguard users and encourage the creativity that makes this sector so unique, we must enhance the degree of security across the whole Web3 ecosystem if we want this pace to continue. Additionally, CertiK notes in its report that it is striving to compile a group of tools and resources for projects that go beyond the straightforward tasks of auditing and into the world of real-time monitoring and bug hunting.

Suggestion