PeckShield Archives - Coin Engineer

Mobius Token Smart Contracts Exploited on BNB Chain

Yigit Taha OZTURK — Sun, 11 May 2025 12:00:33 +0000

According to blockchain security firm Cyvers Alerts, Mobius Token (MBU) smart contracts on the BNB Chain were exploited in a critical attack on May 11, resulting in the theft of 28.5 million MBU tokens, worth over $2.15 million.

Millions Lost Within Minutes

The attacker deployed a smart contract from address 0xb32a53… at 07:31 UTC and launched the exploit two minutes later from contract 0x631adf…, draining funds from wallet 0xb5252f… The stolen tokens were quickly converted into USDT, totaling $2,152,219.99.

You Might Be Interested In: Elon Musk Talks About the Name of a New Memecoin!

Cyvers classified the exploit as “critical,” citing abnormal transaction patterns and suspicious contract code. As of publication, the attacker’s wallet remains active and has not moved the stolen assets. No official statement has been issued by the Mobius Token team.

Cyvers noted their system had flagged the malicious contract two minutes prior to the exploit, but it was too late to prevent the loss.

Crypto Exploits Surge in 2025

This incident follows a wave of crypto hacks reported in April 2025, when PeckShield identified over $360 million in digital asset losses from 18 attacks — a 990% increase from March. The largest was a $330 million BTC theft via social engineering.

As the crypto space grows, so do the threats. This attack highlights the importance of not only decentralization but robust smart contract security in protecting investors and protocols alike.

You can also freely share your thoughts and comments about the topic in the comment section. Additionally, don’t forget to follow us on our Telegram, YouTube, and Twitter channels for the latest news and updates.

The post Mobius Token Smart Contracts Exploited on BNB Chain appeared first on Coin Engineer.

KiloEx Hacker Returns Entire $7.5M After Bounty Offer

Yigit Taha OZTURK — Fri, 18 Apr 2025 17:30:38 +0000

The attacker behind the $7.5 million KiloEx exploit has returned 100% of the stolen funds, just days after the decentralized exchange offered a $750,000 white hat bounty for the return of 90% of the stolen crypto.

All Funds Returned Within 4 Days

The exploit, reported on April 15, forced KiloEx to suspend platform operations. On April 18, PeckShieldAlert confirmed that approximately $5.5 million in crypto had been returned. KiloEx later confirmed full recovery of all assets.

White Hat Agreement Honored

KiloEx had offered the exploiter 10% of the stolen funds as a bounty if they returned the remaining 90%. The attacker complied, and as promised, the platform said:

You Might Be Interested In: Elon Musk Talks About the Name of a New Memecoin!

“All affected funds have been fully restored, and we will honor our agreement with a 10% white hat bounty.”

KiloEx also said it will not pursue legal action, as the issue has been resolved transparently and without victims.

Oracle Vulnerability Suspected

According to PeckShield, the root cause of the exploit may have been a price oracle issue — a manipulated or inaccurate data feed used by smart contracts to determine asset prices.

The post KiloEx Hacker Returns Entire $7.5M After Bounty Offer appeared first on Coin Engineer.

Crypto Attacks Exceed $1.6 Billion in Q1 2025

Emre Yumlu — Tue, 01 Apr 2025 11:30:05 +0000

Crypto attacks caused a loss of $1.63 billion in Q1 2025, marking a 131% year-over-year increase.

Crypto Attacks in Q1 2025: Bybit Breach in the Spotlight

Blockchain security firm PeckShield reported that over $1.63 billion in cryptocurrency was stolen in the first quarter of 2025, with the majority of the losses attributed to the Bybit breach. In January, $87 million worth of cryptocurrency was lost, while attacks surged in February, reaching $1.53 billion. This significant increase was largely tied to the Bybit attack, which became one of the largest crypto thefts to date.

In addition to the Bybit breach, other attacks in February also contributed to the losses, including a $50 million attack on the Infini protocol, a $9.5 million hack on zkLend, and $8.5 million in losses from Ionic.

Hack incidents decreased significantly in March, with a 97% drop in losses. PeckShield reported that only $33 million worth of crypto assets were stolen in March, and some funds were recovered, partially offsetting the damage to users and protocols.

Over 60 Crypto Attacks in Q1

According to PeckShield, over 60 crypto attacks occurred in the first quarter of 2025, resulting in $1.63 billion in losses, a 131% increase compared to the same period in 2024. The largest attack in March was a $13 million exploit targeting the Abracadabra.Money DeFi protocol. Additionally, an $8.4 million attack on the Zoth RWA restaking protocol gained attention.

In March, total losses decreased by 97% to $33 million, with some assets being returned. For example, 90% of the $5 million stolen from the 1inch exchange was returned by the hacker.

The post Crypto Attacks Exceed $1.6 Billion in Q1 2025 appeared first on Coin Engineer.

Withdrawals Suspended on XT Exchange!

Orhan — Thu, 28 Nov 2024 17:00:54 +0000

The cryptocurrency market was shaken by the sudden announcement from XT Exchange, the 23rd largest centralized exchange, that it had suspended all withdrawal transactions. This move has caused panic among users, with various claims being made regarding the reasons behind the decision.

Security research firm PeckShield reported that XT Exchange was hit by a serious cyber attack, and the attackers converted the stolen funds into Ethereum. According to PeckShield’s on-chain data, the stolen assets were quickly converted into ETH to make tracking more difficult. This incident has sparked a new debate in the crypto world about the security standards of centralized exchanges.

Official Statement from XT Exchange

In its official announcement, XT Exchange stated that the withdrawals were temporarily suspended to ensure the platform’s security. The company mentioned that an expert team was formed to handle the situation, and necessary security protocols have been implemented. However, no detailed explanation was given regarding the extent of the attack or the status of users’ funds.

How XT Exchange will compensate user assets and improve security measures will be critical in determining the platform’s future reputation. Meanwhile, calls for stricter security standards in the crypto ecosystem are increasing.

Such events serve as a reminder of how crucial security is in the crypto world and show that there may be significant shifts in the preferences between centralized and decentralized platforms.

The post Withdrawals Suspended on XT Exchange! appeared first on Coin Engineer.

WazirX Hack: $6.5M Laundered Through Tornado Cash

Tanju Akbıyık — Tue, 03 Sep 2024 19:15:01 +0000

Security company PeckShield observed that the hacking entity in charge of the WazirX exploit seems to have laundered 2,600 ETH ($6.5 million) into the U.S.-sanctioned cryptocurrency mixer Tornado Cash.

Cybercriminals often send money to a mixer in order to complicate law enforcement’s tracking and recovery of pilfers of cryptocurrency. Targeting its multi-signature wallet, cryptocurrency exchange WazirX revealed a significant cyberattack causing a loss of more than $230 million on July 18, 2024. According to the exchange, this episode has affected WazirX’s capacity to keep balanced collaterals against its assets.

While the team concentrates on partial recovery and losses expected to be distributed among users, withdrawals remain frozen and trading has been stopped since July 21. Reports state that the restructuring initiatives might cause users of the platform not to get the whole value of their cryptocurrencies kept on it during the attack.

The North Korean Lazarus Group, a well-known state-sponsored hacking group infamous for launching high-profile breaches, including a $600 million hack on the Ronin sidechain in 2022, is thought to have launched this attack.

The post WazirX Hack: $6.5M Laundered Through Tornado Cash appeared first on Coin Engineer.

zkLend: The Leading DeFi Platform on StarkNet

admin — Sat, 03 Feb 2024 09:26:54 +0000

Dive into zkLend, the leading money market protocol built on StarkNet, and its native token ZEND.

What is zkLend?

zkLend is a money market protocol built on StarkNet that leverages the scalability and security advantages of blockchain technology to enable fast and secure financial transactions. By combining zk-rollup scalability with the security of Ethereum in a fast and cost-effective manner, zkLend aims to shape the future of decentralized finance.

zkLend was the first L2 money market protocol launched on StarkNet in 2022. The protocol offers a permissioned and compliance-focused solution for institutional clients and a permissionless service for DeFi users.

Some Features

Interest Rates: The protocol sets interest rates dynamically based on supply and demand.

Collateral: The protocol allows users to use multiple assets as collateral to borrow.

Liquidity: The protocol allows users to borrow and repay at any time.

Governance: The protocol allows ZEND token holders to vote on protocol parameters and supported assets.

How zkLend Works:

zkLend comprises two platforms, Artemis and Apollo, catering to both retail and institutional investors.

Artemis: A zk-rollup protocol running on StarkNet, designed for DeFi users. Users can deposit, borrow, and lend supported assets, and utilize advanced features like flash loans.
Apollo: Provides a dedicated layer for institutional clients.

Advantages:

zkLend offers a multitude of advantages, including:

Decentralized: zkLend is a decentralized platform, allowing users to conduct financial transactions without relying on a central authority.
Privacy: User privacy is protected through the use of zero-knowledge proof protocols, enhancing platform security.
Fast and Easy: zkLend automates and accelerates transactions through smart contracts, enabling users to easily use the platform to borrow or lend.
Institutional: Built with institutions in mind, zkLend adopts an approach focused on onboarding institutional users.

Roadmap:

zkLend’s roadmap aims to enhance the protocol’s reliability, security, usability, and innovation. The roadmap phases are as follows:

Phase 1: The protocol’s core functionalities have been secured. In this phase, the protocol operates on StarkNet’s alpha version and supports only specific assets like DAI, USDC, ETH, WBTC, and LINK.

Phase 2: The protocol’s security and auditability have been enhanced. In this phase, the protocol migrates to StarkNet’s beta version, supports more assets, audits its smart contracts, and establishes insurance pools.

Phase 3: The protocol’s usability and accessibility have been improved. In this phase, the protocol migrates to StarkNet’s mainnet, integrates with more wallets and interfaces, enhances user experience, and provides educational materials.

Phase 4: The protocol’s innovation and competitiveness have been solidified. In this phase, the protocol develops new features and products, offering services like credit cards, fixed-rate loans, derivatives, NFTs, and integration with other L2 protocols.

Backers and Partners:

zkLend is backed by the following institutions:

zkLend is secured by the following institutions:

Team with a Vision for Financial Freedom and Inclusion:

The zkLend team comprises a group of talented and passionate individuals dedicated to developing an L2 money market protocol with a vision for financial freedom and inclusion. Team members include some of StarkNet’s founders and developers, experienced engineers, designers, and marketers in the DeFi and blockchain space, academic researchers, and advisors.

The team actively contributes to the development of the StarkNet ecosystem and shares StarkNet full node snapshots. The team maintains constant communication with the DeFi community and takes feedback into consideration.

Tokenomics

zkLend tokenomics are the elements that define the protocol’s operation, governance, and value. The native token of the zkLend protocol is the ZEND token. ZEND is both a utility and governance token for the protocol.

ZEND Token Features

Total Supply: The total supply of ZEND tokens is fixed at 1 billion and is non-inflationary. No individual or entity has the authority to create ZEND tokens.

Distribution: The distribution of ZEND tokens will be fair and transparent among the protocol’s developers, investors, advisors, partners, users, and community. The distribution percentages are as follows:

Developers: 20%
Investors: 15%
Advisors: 5%
Partners: 10%
Users: 25%
Community: 25%

Utility: The ZEND token is a necessary payment instrument for using the protocol. ZEND tokens are required for borrowing, lending, collateralizing, providing liquidity, participating in insurance pools, and availing other services on the protocol.

Governance: ZEND token holders can use their tokens to vote on protocol parameters, supported assets, new features, and products.

Also, in the comment section, you can freely share your comments and opinions about the topic. Additionally, don’t forget to follow us on Telegram, YouTube and Twitter for the latest news and updates.

The post zkLend: The Leading DeFi Platform on StarkNet appeared first on Coin Engineer.

Arbitrum-based project has been attacked!

admin — Mon, 22 Jan 2024 16:08:10 +0000

Arbitrum-based project Concentric.fi hacked, price drops 51%. Blockchain security firm PeckShield, which has an altcoin project called Concentric.fi based on Arbitrum, announced that the infrastructure of Concentric.fi had been attacked.

You might like: Why is Bitcoin falling?

pic.twitter.com/vDdqPlGJvP

— PeckShieldAlert (@PeckShieldAlert) January 22, 2024

PeckShield posted the following on X (Twitter):

Concentric.fi has reported being attacked and abused.

The local token CONE fell by 51% after this announcement.

The amount of stolen assets is as follows:

$1.72 million worth of cryptocurrencies
The stolen $1.72 million worth of cryptocurrencies were converted to 716 Ethereum (ETH).

The post Arbitrum-based project has been attacked! appeared first on Coin Engineer.