Audits
Services
Services
Smart Contract Audit
Blockchain Protocol Audit
Penetration Testing
dApp Audit
Crypto Wallet Audit
Cross-Chain Bridge Audit
Bug Bounty
Proof of Reserves
CCSS Audit
Tokenomics Audit & Design
Smart Contract Audit
Mitigate weaknesses in your smart contract and improve its functionality with a double line-to-line code analysis and a separate review by a lead auditor.
Blockchain Protocol Audit
Secure the entire architecture and implementation layers of your blockchain protocol with professional security audits and testing.
Penetration Testing
Proactively detect vulnerabilities in your Web3 project by subjecting your systems to a simulated cyberattack in a secure and controlled environment.
dApp Audit
Identify vulnerabilities in applications interacting with blockchain networks with secure code review and static security analysis.
Crypto Wallet Audit
Code review & static security analysis for crypto wallet apps.
Cross-Chain Bridge Audit
Code review & security analysis for cross-chain crypto bridges.
Bug Bounty
Receive only relevant bug reports or undergo crowdsourced penetration testing with the help of thousands of ethical hackers curated by HackenProof.
Proof of Reserves
Enhance transparency in crypto exchanges with independent on-chain proof of assets’ true collateralization.
CCSS Audit
Assess and strengthen your security practices, identify vulnerabilities, and safeguard valuable digital assets in the ever-evolving cryptocurrency landscape.
Tokenomics Audit & Design
Ensure your token model robustness and efficiency and convey trust to investors and community with our thorough, independent audit of protocol economic security.
Solutions
Post-deployment security solution
Hacken Extractor
Real-time smart contract protection from assets loss
Learn more
Solutions
Featured ecosystems:
Ethereum (EVM)
BSC
Polygon
Near
Avalanche
Fantom
Aptos
Sui
Optimism
zkSync
Arbitrum
Solana
Polkadot
Cosmos
Radix
Linea
MetaMask
Others
By Languages:
Solidity
Rust
Move
Blog
Company
Company

The window to exchange $HAI for Hacken Equity Shares ($HES) is now open > Claim your spot today

Weekly News Digest #78

Weekly News Digest #78

Share via:

Cloud services are becoming weapons in the Ukraine-Russia cyberwar

According to the new research by Aqua Security’s Team Nautilus, cloud technologies now make difference on the digital front of the war. The team has tracked code and tools in public repositories including code libraries, Docker container images, and popular software packages such as PyPI, Ruby, and npm. The Team searched for guides, tools, and names promoted for use in digital attacks by either side.

40% of these public repositories were related to DDoS attacks. Two container images, “abagayev/stop-russia:latest” and “erikmnkl/stoppropaganda:latest,” drew the attention of the team. Both are DDoS tools that contain how-to guides, that expand the possibility of website disruption through cloud deployment to audiences without technical expertise. Russian financial and service providers are on the target list.

CaddyWiper: more destructive malware striking Ukraine

A new form of wiper malware is used in assaults against Ukrainian organizations. According to ESET, the wiper has been detected “on a few dozen systems in a limited number of organizations”. CaddyWiper is the malicious code designed to damage target systems by erasing user data, hard drives, programs, and partition information. Unlike other common malware variants, wipers are not focused on financial gain or theft.

Caddy Wiper avoids erasing information on domain controllers. Thereby, attackers can keep their access inside the organization while disturbing operations. This malware was spread through Microsoft Group Policy Objects. The first time this malware was used against Ukraine was in January this year prior to the Russian invasion of Ukraine.

Inside Ukraine’s digital war

Digital war has become a key pillar of Ukraine’s defence. The experience the country gets when fighting against Russia in the digital space is likely to be used during the country’s post-war reconstruction. According to Alex Bornyakov, the Deputy Minister of Digital Transformation of Ukraine, Ukraine is going to become a global leader in the use of cryptocurrencies. During the first days of the war, Ukraine received huge volumes of assets in crypto (close to $100M so far).

The use of crypto has made money transfers much faster which is of the greatest importance since at the time of war is crucial. This week, the President of Ukraine Zelensky signed the law “On Virtual Assets” thereby sending a powerful message to the global crypto community “After the war, Ukraine will welcome crypto businesses from worldwide to do business in our country”. Ukraine has also created its Cyber Army and is actively conducting digital diplomacy.

US lawmakers are introducing bills that may force crypto exchanges to stop working with Russian wallets

Representative Brad Sherman is going to introduce the bill aimed at forcing crypto exchanges to stop working with Russian wallets amid the war in Ukraine. The legislation was firstly announced by Senator Elizabeth Warren on 8 March. Although the official text of the bill is unavailable, the proposed legislation would reportedly give the Treasury Department the authority to stop crypto exchanges operating under U.S. jurisdiction from processing transactions related to Russian crypto addresses.

U.S. taxpayers would be also required to report any crypto transactions exceeding $10K to FinCEN, Financial Crimes Enforcement Network. The call to block crypto addresses belonging to Russian users was made by the Minister of Digital Transformation of Ukraine Mykhailo Fedorov. However, the CEOs of major crypto exchanges state that banning all Russian users may have a negative impact on crypto development.

The financial sector is at risk of cyberattacks during the war in Ukraine

Although the scope of cyberattacks utilized during the war in Ukraine has not reached its peak yet, the financial sector remains on high alert to the possibility. Denial of service is among the main threats that can affect the financial sector. According to CrowdStrike, over preparedness is the key part of cybersecurity. Although cyberattacks are effective in disrupting infrastructure, Russia is likely to continue relying on kinetic attacks as the main strategy in the war against Ukraine.

However, before the invasion of Ukraine, Russia was using cyberattacks as an instrument to cause damage to Ukrainian infrastructure. Russian active role in promoting cyberattacks worldwide forced the US government to impose sanctions on Russian research institutions responsible for the development of the destructive Triton malware.