Audits
Services
Services
Smart Contract Audit
Blockchain Protocol Audit
Penetration Testing
dApp Audit
Crypto Wallet Audit
Cross-Chain Bridge Audit
Bug Bounty
Proof of Reserves
CCSS Audit
Tokenomics Audit & Design
Smart Contract Audit
Mitigate weaknesses in your smart contract and improve its functionality with a double line-to-line code analysis and a separate review by a lead auditor.
Blockchain Protocol Audit
Secure the entire architecture and implementation layers of your blockchain protocol with professional security audits and testing.
Penetration Testing
Proactively detect vulnerabilities in your Web3 project by subjecting your systems to a simulated cyberattack in a secure and controlled environment.
dApp Audit
Identify vulnerabilities in applications interacting with blockchain networks with secure code review and static security analysis.
Crypto Wallet Audit
Code review & static security analysis for crypto wallet apps.
Cross-Chain Bridge Audit
Code review & security analysis for cross-chain crypto bridges.
Bug Bounty
Receive only relevant bug reports or undergo crowdsourced penetration testing with the help of thousands of ethical hackers curated by HackenProof.
Proof of Reserves
Enhance transparency in crypto exchanges with independent on-chain proof of assets’ true collateralization.
CCSS Audit
Assess and strengthen your security practices, identify vulnerabilities, and safeguard valuable digital assets in the ever-evolving cryptocurrency landscape.
Tokenomics Audit & Design
Ensure your token model robustness and efficiency and convey trust to investors and community with our thorough, independent audit of protocol economic security.
Solutions
Post-deployment security solution
Hacken Extractor
Real-time smart contract protection from assets loss
Learn more
Solutions
Featured ecosystems:
Ethereum (EVM)
BSC
Polygon
Near
Avalanche
Fantom
Aptos
Sui
Optimism
zkSync
Arbitrum
Solana
Polkadot
Cosmos
Radix
Linea
MetaMask
Others
By Languages:
Solidity
Rust
Move
Blog
Company
Company

The window to exchange $HAI for Hacken Equity Shares ($HES) is now open > Claim your spot today

Weekly News Digest #81

Weekly News Digest #81

Share via:

Is it easy to spend the stolen crypto?

The cases of crypto hacks take place regularly. But what do hackers do with the stolen assets? Is it possible to easily cash out these assets without being caught by law enforcement bodies? Generally, the blockchain system is not designed for processing large volumes of assets anonymously. If there are massive sums involved, the options for laundering them are limited.

When speaking about Web 3.0, hacking may be viewed as the simplest part of the crypto crime. To hide their trails, cybercriminals may turn to “mixers” that allow users to deposit cryptocurrency to mix it with the virtual assets of other users. Tornado Cash is one of the most popular crypto mixers. However, mixers do not guarantee 100% anonymity for malicious actors especially if mixed sums are very substantial. Some firms including Chainalysis have started developing de-anonymization technologies.

In Q1 2022, crypto losses spiked 692% compared to the same period in 2021

Last week the DeFi sector experienced the largest hack to date when Axie Infinity’s Ronin Network was exploited for about $625M. The more people enter the crypto field, the higher the total volume of crypto crime. The other big projects that fell victim to hacks were Wormhole ($320M) and Qubit Finance ($80M). Ronin and Wormhole hacks represent serious vulnerabilities in the crypto ecosystem.

The total volume of losses experienced by the Web 3.0 ecosystem in Q1 2022 was $1.23B, 692% more than in 2021 ($154.6M). It is likely that the number of sophisticated attacks in crypto will continue increasing. And these attacks will become more lucrative. Even a single error in the project’s code may enable hackers to conduct the exploit.

EU targets crypto asset services to russia in latest sanctions

In the latest round of sanctions, the EU targeted crypto wallets, banks, trusts, and currencies to close loopholes that may potentially allow russia to move money abroad. Following the russian invasion of Ukraine, EU-based crypto exchanges were required to apply sanctions that bar transactions from particular individuals.

On Friday the EU extended the prohibitions to deposits to crypto wallets. It is just a part of the wide list of financial sanctions imposed recently by the EU on russia. From now on, it will be extremely difficult for russian people to store their wealth in the EU.

Ukraine uses smash and grab cyberattacks to defeat russia

Cyber retaliation has already caused serious headaches to many russian organizations as well as foreign companies that still operate in this country. Such groups as Anonymous, IT Army of Ukraine, and Hacker Forces have been stealing headlines since the beginning of the war. However, many data leaks may seem to be useless or there is just too much noise around them without any real consequences. That does not mean that these attacks do not make sense.

Smash and grab cyberattacks do not have narrow targets. Attackers simply take everything possible in the hope that there are sensitive files. However, these attacks force russia to allocate resources to investigate their consequences. Thus, these attacks tie up the resources of russian cyber specialists. And these attacks distract russian attention from more stealthy operations such as the ones carried out by the Cyber Operations Unit of Ukraine’s Defense Intelligence Service. The main problem of the pro-Ukrainian hacktivists is that they are attacking where they can rather than where it would cause the most serious damage to russia. Nevertheless, any help is appreciated.

Government-targeted DDoS attacks surge over 1,800% in 2021

Governments worldwide are now focused on protecting both their physical and digital borders. According to the data provided by Atlas VPN, the volume of DDoS attacks per customer aimed at the government sector soared by a shocking 1,881% in 2021 compared to 2020. At the same time, the number of attack events decreased by 70%. That means that attacks are becoming more severe.

DDoS attacks are utilized to disrupt the functioning of governments or as a form of protest by citizens. Apart from government sector, the list of other heavily targeted sectors includes retail, research and education, online commerce and gaming, and technology. The modern cyber war between russia and Ukraine will likely further increase the volume of DDoS attacks targeting all these sectors but especially the government.