Audits
Services
Services
Smart Contract Audit
Blockchain Protocol Audit
Penetration Testing
dApp Audit
Crypto Wallet Audit
Cross-Chain Bridge Audit
Bug Bounty
Proof of Reserves
CCSS Audit
Tokenomics Audit & Design
Smart Contract Audit
Mitigate weaknesses in your smart contract and improve its functionality with a double line-to-line code analysis and a separate review by a lead auditor.
Blockchain Protocol Audit
Secure the entire architecture and implementation layers of your blockchain protocol with professional security audits and testing.
Penetration Testing
Proactively detect vulnerabilities in your Web3 project by subjecting your systems to a simulated cyberattack in a secure and controlled environment.
dApp Audit
Identify vulnerabilities in applications interacting with blockchain networks with secure code review and static security analysis.
Crypto Wallet Audit
Code review & static security analysis for crypto wallet apps.
Cross-Chain Bridge Audit
Code review & security analysis for cross-chain crypto bridges.
Bug Bounty
Receive only relevant bug reports or undergo crowdsourced penetration testing with the help of thousands of ethical hackers curated by HackenProof.
Proof of Reserves
Enhance transparency in crypto exchanges with independent on-chain proof of assets’ true collateralization.
CCSS Audit
Assess and strengthen your security practices, identify vulnerabilities, and safeguard valuable digital assets in the ever-evolving cryptocurrency landscape.
Tokenomics Audit & Design
Ensure your token model robustness and efficiency and convey trust to investors and community with our thorough, independent audit of protocol economic security.
Solutions
Post-deployment security solution
Hacken Extractor
Real-time smart contract protection from assets loss
Learn more
Solutions
Featured ecosystems:
Ethereum (EVM)
BSC
Polygon
Near
Avalanche
Fantom
Aptos
Sui
Optimism
zkSync
Arbitrum
Solana
Polkadot
Cosmos
Radix
Linea
MetaMask
Others
By Languages:
Solidity
Rust
Move
Blog
Company
Company

The window to exchange $HAI for Hacken Equity Shares ($HES) is now open > Claim your spot today

Weekly News Digest #53

Weekly News Digest #53

Share via:

Governments and engineers are targeted worldwide by the new advanced hacker group

The hacker group was targeting these entities for espionage purposes. The team of researchers representing the company ESET dubbed the malicious group FamousSparrow. According to the researchers, the group is a new player in the espionage space. The advanced persistent threat group has been active since 2019 and is likely to stand behind numerous attacks on governments, legal companies, engineering firms, and entities representing the hospitality sector. The victims represent various regions including Europe, the Americas, Asia, etc.

According to the data collected by ESET, the malicious group acts independently from other active APT groups. However, there are some overlaps between them. The new APT group is interesting since it has exploited a chain of zero-day vulnerabilities called ProxyLogon. The malicious group was exploiting these vulnerabilities to compromise Microsoft servers worldwide in March. Advanced persistent groups are actively targeting internet-facing applications including Microsoft Share Point and Oracle Opera.

Advisory on Conti ransomware released by CISA: significant increase in attacks, 400 incidents detected

CISA has shared details on the new ransomware group and its affiliates with the cybersecurity community. According to the data collected by CISA together with the FBI, there were more than 400 ransomware attacks targeting the US and other enterprises initiated by the Conti group. CISA has identified that although the Conti group applies the ransomware-as-a-service model, they do it a bit differently than other ransomware groups. Namely, instead of paying a share of profits to affiliates, the group is paying the deployers of ransomware fixed wages.

The Conti ransomware group is mostly targeting the entities representing the critical infrastructure. The list of instruments and tools used by the Conti malicious group to commit attacks includes remote monitoring and management software, Remote Desktop software, and spear-phishing campaigns. When speaking about spear-phishing campaigns, they were mostly using tailored emails containing malicious links or attachments.

Russian Exchange is Facing Sanctions Imposed by Treasury

The Russian cryptocurrency exchange SUEX has been added to the sanctions list by the US Treasury. The latter accused SUEX of facilitating ransomware payments for countless groups. Although SUEX is incorporated in the Czech Republic, it is operating from Russia. According to the estimations made by Treasury, up to 40% of the transactions processed on the exchange are linked to «illicit actors». Under the imposed sanctions, property and interests related to the target are blocked and US citizens are prohibited from engaging with them.

The Treasury’s Office of Foreign Assets Control has issued a separate update in which it reminds ransomware victims of the risks associated with paying ransom to cybercriminals. For example, a government may impose penalties on organizations that have carried out payments to the entities from the sanctions list such as Evil Corp. Also, this update contains information regarding the importance for ransomware victims to report to government bodies of the experienced incidents.

Partnership for security between payments giants and crypto firms

The upcoming acquisition of CipherTrace by Mastercard is a great example of the fact that a partnership between payments giants and crypto firms is needed to promote digital asset innovation. Institutional interest for virtual assets including cryptocurrencies is constantly increasing proving that these assets are here to stay. At the same time, traditional financial institutions start understanding the importance to integrate virtual assets into their agenda. Mastercard and VISA are actively entering into partnerships with crypto organizations to promote security and increase users’ trust in transactions involving virtual assets.

The president of cyber and intelligence at Mastercard Ajay Bhalla noted that customers and other partners are interested in getting the same convenient experience when working with digital assets as the one they get when working with traditional payments methods. The acquisition of CipherTrace will allow Mastercard to strengthen its power in identifying, detecting, and preventing money laundering and fraud. Proper accommodation from the side of financial institutions that already support virtual assets is required to ensure their growth in the segment of crypto payments.

DDoS attack targeting VoIP: Canadian provider is being held to ransom

The Canadian voice-over-IP provider VoIP has faced massive and sustained DDoS attack that could cause serious damage to the company. VoIP has been down since 17 September. According to the information provided by the news service Bleeping Computer, a threat actor initially demanded 1 BTC to stop the attack but then asked for 100 BTC. The message provided on the company’s site includes information regarding the attack targeting VoIP’s website and POP servers.

The company has already recovered SMS and MMS services, conference recording services, and call recordings. Now, these features are fully functional. The company has 23 servers in Canada and 42 servers in the USA to meet the needs of its phone customers. The attack against the Canadian provider is the confirmation of the threats posed by the malicious groups and actors behind DDoS attacks to entities.