Audits
Services
Services
Smart Contract Audit
Blockchain Protocol Audit
Penetration Testing
dApp Audit
Crypto Wallet Audit
Cross-Chain Bridge Audit
Bug Bounty
Proof of Reserves
CCSS Audit
Tokenomics Audit & Design
Smart Contract Audit
Mitigate weaknesses in your smart contract and improve its functionality with a double line-to-line code analysis and a separate review by a lead auditor.
Blockchain Protocol Audit
Secure the entire architecture and implementation layers of your blockchain protocol with professional security audits and testing.
Penetration Testing
Proactively detect vulnerabilities in your Web3 project by subjecting your systems to a simulated cyberattack in a secure and controlled environment.
dApp Audit
Identify vulnerabilities in applications interacting with blockchain networks with secure code review and static security analysis.
Crypto Wallet Audit
Code review & static security analysis for crypto wallet apps.
Cross-Chain Bridge Audit
Code review & security analysis for cross-chain crypto bridges.
Bug Bounty
Receive only relevant bug reports or undergo crowdsourced penetration testing with the help of thousands of ethical hackers curated by HackenProof.
Proof of Reserves
Enhance transparency in crypto exchanges with independent on-chain proof of assets’ true collateralization.
CCSS Audit
Assess and strengthen your security practices, identify vulnerabilities, and safeguard valuable digital assets in the ever-evolving cryptocurrency landscape.
Tokenomics Audit & Design
Ensure your token model robustness and efficiency and convey trust to investors and community with our thorough, independent audit of protocol economic security.
Solutions
Post-deployment security solution
Hacken Extractor
Real-time smart contract protection from assets loss
Learn more
Solutions
Featured ecosystems:
Ethereum (EVM)
BSC
Polygon
Near
Avalanche
Fantom
Aptos
Sui
Optimism
zkSync
Arbitrum
Solana
Polkadot
Cosmos
Radix
Linea
MetaMask
Others
By Languages:
Solidity
Rust
Move
Blog
Company
Company

The window to exchange $HAI for Hacken Equity Shares ($HES) is now open > Claim your spot today

Weekly News Digest #22

Weekly News Digest #22

Share via:

Singtel Hacking Resulting Customers And Employees Data Leakage

A security breach of a third-party file-sharing system led to the leakage of personal information of 129.000 clients and former Singtel employees. The data of 23 enterprises, credit card details of the staff of a corporate client were also revealed.

After the investigation, the company stated that customers private data contained the name, date of birth, address, and mobile number. What is more, 28 former staff of Singtel suffered from the leakage of bank account info, and 45 employees of a corporate client went through the loss of credit card details.

Read more

Kia Motors Brings $20m to Hackers

An extended system outage of Motors America appeared to be a hacker attack. The ransomware band, known as DoppelPaymer, announced the cyberattack of the company, locking down the company’s data and requiring a $20 million redeem.

In case of meeting the blackmailers’ demands, the sensitive data bits of KIA will not be published on the hacker’s site.

Ransom company mentioned that they aimed at Hyundai Motor America, the parent company of Kia Motors America, based in Irvine, Calif. DoppelPaymer gave Motors America 2 -3 weeks to pay 404 Bitcoins (approximately $20 million). Hackers threatened to raise $30 million.

Read more

Privacy Suffers: Tracker Pixels In Emails

Analytics claim that, nowadays, invisible pixels tracking emails are now ubiquitous.

Spy pixels (tracking pixels, or web beacons) are invisible. They represent tiny image files like PNGs or GIFs, are included in the content body of an email. Usually, their size doesn’t exceed 1×1 pixels, and they merge with the content to become invisible to users. Such pixels come in handy to track the visitors on web domains.

Read more

Microsoft Flash Will Be Removed Via The New KB4577586 Windows Update

Recently Microsoft has launched extending the new KB4577586 update in order to remove the Adobe Flash Player software from Windows gadgets.

Since October 2020, browser developers were preparing for the Flash expiration date (end of 2020). To avoid security issues, system administrators who wanted to delete Flash beforehand could access the Microsoft Update Catalog and download the KB4577586 packages before EOL.

Read more

Zero-Day Vulnerabilities In Gaper

Gapers is an application with 800.000 users created for those who seek dating younger or older partners. Researchers warn that any user profile of the dating app Gaper could be hacked due to zero-day flaws.

There is no access control and multifactor authentication in the app. Consequently, attackers could get private information and take the account over for 10 minutes.

Given that certificate pinning was not enforced, Burp Suite proxy allowed to obtain a manipulator-in-the-middle (MitM) position.

Read more