Blockchain security firm PeckShield reported that the crypto space suffered more than 20 hacking incidents in September 2024.
According to the company, these events caused approximately $120.23 million in losses, not including $32.4 million worth of Spark Wrapped Ethereum (spWETH) drained in a September 27 phishing attack.
BingX, Penpie and Indodax suffer the most
CryptoPotato reported on some of the biggest hacks in the past month, including a $44 million breach at BingX, a $27 million loss at Penpie, and a $21 million hit to Indodax.
During the BingX incident on September 20, PeckShield alerted the public to an initial outflow of $13.5 million that it considered suspicious. However, upon further investigation, several channel security experts gave different estimates of the loss, ranging from a low of $44 million to a high of $52 million.
In a subsequent response to the attack, the Singapore-based exchange assured users that it would cover the losses, which it described as “minor.”
The Penpie affair was one of the first of the month, occurring on September 3. An autopsy revealed that the criminal exploited a re-entry protection vulnerability on the platform, allowing him to register a fake Pendle marketplace. They used it to manipulate the platform’s reward system, ultimately earning 11,113.6 ETH.
The incident also got a bit dramatic when the person believed to be behind the $200 million 2023 Euler hack contacted the Penpie attacker to congratulate him on his feat, urging him to do not return a single cent of the stolen. money.
Indonesian crypto exchange Indodax was also among the hardest hit by criminal activity last month. In this exploit, the perpetrator allegedly breached the platform’s withdrawal system and stole large amounts of Bitcoin (BTC), Tron (TRX), Polygon (MATIC), and Shiba Inu (SHIB).
Little hacks
Other platforms that were hit on a relatively smaller scale by the September crypto breaches include DeltaPrime, which lost $5.98 million, and Truflation, which was hit for $5.6 million. dollars.
Onyx, a fork of Compound Finance, also lost $3.8 million last month. In October 2023, the protocol was stolen another $2.1 million. In this incident, the thief took advantage of a known vulnerability in Onyx’s code that was also allegedly used to steal funds from Midas Capital and Hundred Finance.
The ten biggest hacks of the month were collected by BananaGun, which cost $3 million, Bedrock, which suffered a $1.75 million breach, and Caterpillar Coin (CUT), where $1.4 million disappeared in a flash loan attack.
Binance Free $600 (CryptoPotato Exclusive): Use this link to create a new account and receive an exclusive $600 welcome offer on Binance (all details).
LIMITED OFFER 2024 on BYDFi Exchange: Up to $2,888 Welcome Reward, use this link to sign up and open a 100 USDT-M position for free!
