• bitcoinBitcoin (BTC) $ 66,834.00
  • ethereumEthereum (ETH) $ 3,106.18
  • tetherTether (USDT) $ 1.00
  • bnbBNB (BNB) $ 576.31
  • solanaSolana (SOL) $ 172.49
  • usd-coinUSDC (USDC) $ 1.00
  • staked-etherLido Staked Ether (STETH) $ 3,102.67
  • xrpXRP (XRP) $ 0.521112
  • the-open-networkToncoin (TON) $ 6.43
  • dogecoinDogecoin (DOGE) $ 0.151986
  • cardanoCardano (ADA) $ 0.478424
  • shiba-inuShiba Inu (SHIB) $ 0.000025
  • avalanche-2Avalanche (AVAX) $ 37.16
  • tronTRON (TRX) $ 0.123446
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 66,843.00
  • polkadotPolkadot (DOT) $ 7.11
  • chainlinkChainlink (LINK) $ 16.40
  • bitcoin-cashBitcoin Cash (BCH) $ 476.24
  • nearNEAR Protocol (NEAR) $ 7.90
  • matic-networkPolygon (MATIC) $ 0.712594
  • litecoinLitecoin (LTC) $ 83.81
  • internet-computerInternet Computer (ICP) $ 13.39
  • uniswapUniswap (UNI) $ 8.00
  • fetch-aiFetch.ai (FET) $ 2.28
  • daiDai (DAI) $ 1.00
  • leo-tokenLEO Token (LEO) $ 5.88
  • ethereum-classicEthereum Classic (ETC) $ 28.61
  • hedera-hashgraphHedera (HBAR) $ 0.114043
  • pepePepe (PEPE) $ 0.000009
  • render-tokenRender (RNDR) $ 9.87
  • aptosAptos (APT) $ 8.49
  • wrapped-eethWrapped eETH (WEETH) $ 3,223.57
  • immutable-xImmutable (IMX) $ 2.42
  • first-digital-usdFirst Digital USD (FDUSD) $ 1.00
  • cosmosCosmos Hub (ATOM) $ 8.59
  • crypto-com-chainCronos (CRO) $ 0.124276
  • filecoinFilecoin (FIL) $ 5.85
  • mantleMantle (MNT) $ 0.973347
  • stellarStellar (XLM) $ 0.107758
  • arweaveArweave (AR) $ 47.42
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 3,052.81
  • blockstackStacks (STX) $ 2.08
  • okbOKB (OKB) $ 49.98
  • the-graphThe Graph (GRT) $ 0.308893
  • kaspaKaspa (KAS) $ 0.121651
  • optimismOptimism (OP) $ 2.55
  • arbitrumArbitrum (ARB) $ 1.01
  • makerMaker (MKR) $ 2,798.66
  • vechainVeChain (VET) $ 0.035434
  • bittensorBittensor (TAO) $ 377.33
  • dogwifcoindogwifhat (WIF) $ 2.54
  • suiSui (SUI) $ 1.06
  • fantomFantom (FTM) $ 0.887389
  • moneroMonero (XMR) $ 135.92
  • ethena-usdeEthena USDe (USDE) $ 1.00
  • injective-protocolInjective (INJ) $ 24.88
  • thorchainTHORChain (RUNE) $ 6.77
  • theta-tokenTheta Network (THETA) $ 2.20
  • flokiFLOKI (FLOKI) $ 0.000200
  • rocket-pool-ethRocket Pool ETH (RETH) $ 3,435.26
  • celestiaCelestia (TIA) $ 9.46
  • jupiter-exchange-solanaJupiter (JUP) $ 1.25
  • coredaoorgCore (CORE) $ 1.83
  • galaGALA (GALA) $ 0.045431
  • sei-networkSei (SEI) $ 0.547820
  • lido-daoLido DAO (LDO) $ 1.79
  • bonkBonk (BONK) $ 0.000024
  • bitget-tokenBitget Token (BGB) $ 1.09
  • algorandAlgorand (ALGO) $ 0.184654
  • mantle-staked-etherMantle Staked Ether (METH) $ 3,200.35
  • quant-networkQuant (QNT) $ 98.04
  • whitebitWhiteBIT Coin (WBT) $ 9.87
  • ondo-financeOndo (ONDO) $ 0.950279
  • akash-networkAkash Network (AKT) $ 5.77
  • flowFlow (FLOW) $ 0.893350
  • aaveAave (AAVE) $ 88.41
  • bitcoin-svBitcoin SV (BSV) $ 66.06
  • singularitynetSingularityNET (AGIX) $ 0.950148
  • beam-2Beam (BEAM) $ 0.024423
  • bittorrentBitTorrent (BTT) $ 0.000001
  • dydx-chaindYdX (DYDX) $ 2.04
  • flare-networksFlare (FLR) $ 0.027857
  • ethenaEthena (ENA) $ 0.750342
  • neoNEO (NEO) $ 15.50
  • zebec-protocolZebec Protocol (ZBC) $ 0.021365
  • elrond-erd-2MultiversX (EGLD) $ 40.30
  • cheeleeCheelee (CHEEL) $ 18.95
  • axie-infinityAxie Infinity (AXS) $ 7.43
  • chilizChiliz (CHZ) $ 0.119536
  • msolMarinade Staked SOL (MSOL) $ 206.05
  • gatechain-tokenGate (GT) $ 7.94
  • worldcoin-wldWorldcoin (WLD) $ 4.84
  • tokenize-xchangeTokenize Xchange (TKX) $ 12.68
  • the-sandboxThe Sandbox (SAND) $ 0.444138
  • wormholeWormhole (W) $ 0.546795
  • ecasheCash (XEC) $ 0.000050
  • safeSafe (SAFE) $ 2.26
  • jasmycoinJasmyCoin (JASMY) $ 0.019602
  • kucoin-sharesKuCoin (KCS) $ 9.77
  • eosEOS (EOS) $ 0.812052
  • tezosTezos (XTZ) $ 0.938423
  • aioz-networkAIOZ Network (AIOZ) $ 0.839076
  • conflux-tokenConflux (CFX) $ 0.223586
  • roninRonin (RON) $ 2.76
  • mina-protocolMina Protocol (MINA) $ 0.796031
  • havvenSynthetix Network (SNX) $ 2.67
  • ordinalsORDI (ORDI) $ 40.29
  • starknetStarknet (STRK) $ 1.14
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 3,105.39
  • decentralandDecentraland (MANA) $ 0.431790
  • lido-staked-solLido Staked SOL (STSOL) $ 205.36
  • book-of-memeBOOK OF MEME (BOME) $ 0.011357
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 3,130.90
  • ribbon-financeRibbon Finance (RBN) $ 0.807665
  • gnosisGnosis (GNO) $ 300.88
  • apecoinApeCoin (APE) $ 1.24
  • pendlePendle (PENDLE) $ 4.95
  • heliumHelium (HNT) $ 4.60
  • nexoNEXO (NEXO) $ 1.31
  • usddUSDD (USDD) $ 0.999604
  • dexeDeXe (DEXE) $ 12.86
  • kavaKava (KAVA) $ 0.672232
  • nervos-networkNervos Network (CKB) $ 0.016195
  • echelon-primeEchelon Prime (PRIME) $ 17.93
  • iotaIOTA (IOTA) $ 0.215888
  • theta-fuelTheta Fuel (TFUEL) $ 0.106568
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.65
  • axelarAxelar (AXL) $ 1.03
  • pyth-networkPyth Network (PYTH) $ 0.442774
  • bitcoin-goldBitcoin Gold (BTG) $ 37.46
  • klay-tokenKlaytn (KLAY) $ 0.179094
  • fraxFrax (FRAX) $ 0.998809
  • frax-etherFrax Ether (FRXETH) $ 3,107.66
  • terra-lunaTerra Luna Classic (LUNC) $ 0.000108
  • oasis-networkOasis Network (ROSE) $ 0.092071
  • fasttokenFasttoken (FTN) $ 1.97
  • ocean-protocolOcean Protocol (OCEAN) $ 0.952074
  • livepeerLivepeer (LPT) $ 19.05
  • sats-ordinalsSATS (Ordinals) (SATS) $ 0.00000029
  • mantra-daoMANTRA (OM) $ 0.744543
  • blurBlur (BLUR) $ 0.371279
  • tether-goldTether Gold (XAUT) $ 2,413.46
  • swethSwell Ethereum (SWETH) $ 3,272.54
  • osmosisOsmosis (OSMO) $ 0.865427
  • dydxdYdX (ETHDYDX) $ 2.04
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 3,322.35
  • jito-governance-tokenJito (JTO) $ 4.63
  • woo-networkWOO (WOO) $ 0.298768
  • xdce-crowd-saleXDC Network (XDC) $ 0.036653
  • wemix-tokenWEMIX (WEMIX) $ 1.50
  • pepecoin-2PepeCoin (PEPECOIN) $ 4.71
  • illuviumIlluvium (ILV) $ 84.28
  • golemGolem (GLM) $ 0.536423
  • curve-dao-tokenCurve DAO (CRV) $ 0.427061
  • astarAstar (ASTR) $ 0.091358
  • true-usdTrueUSD (TUSD) $ 1.00
  • arkhamArkham (ARKM) $ 2.34
  • 0x0x Protocol (ZRX) $ 0.605914
  • raydiumRaydium (RAY) $ 1.86
  • staked-frax-etherStaked Frax Ether (SFRXETH) $ 3,361.43
  • aerodrome-financeAerodrome Finance (AERO) $ 1.07
  • apenftAPENFT (NFT) $ 0.00000049
  • polymeshPolymesh (POLYX) $ 0.455544
  • superfarmSuperVerse (SUPER) $ 1.06
  • iotexIoTeX (IOTX) $ 0.050361
  • radixRadix (XRD) $ 0.045255
  • ethereum-name-serviceEthereum Name Service (ENS) $ 14.87
  • dymensionDymension (DYM) $ 2.70
  • venomVenom (VENOM) $ 0.278604
  • enjincoinEnjin Coin (ENJ) $ 0.317743
  • celoCelo (CELO) $ 0.853862
  • 1inch1inch (1INCH) $ 0.396531
  • mx-tokenMX (MX) $ 4.62
  • memecoin-2Memecoin (MEME) $ 0.024912
  • trust-wallet-tokenTrust Wallet (TWT) $ 1.09
  • ankrAnkr Network (ANKR) $ 0.044727
  • nosanaNosana (NOS) $ 5.33
  • stepnGMT (GMT) $ 0.220155
  • pax-goldPAX Gold (PAXG) $ 2,388.26
  • altlayerAltLayer (ALT) $ 0.320990
  • zilliqaZilliqa (ZIL) $ 0.023585
  • reserve-rights-tokenReserve Rights (RSR) $ 0.008483
  • biconomyBiconomy (BICO) $ 0.526493
  • siacoinSiacoin (SC) $ 0.007197
  • arcblockArcblock (ABT) $ 4.21
  • ravencoinRavencoin (RVN) $ 0.029436
  • project-galaxyGalxe (GAL) $ 3.47
  • terra-luna-2Terra (LUNA) $ 0.581407
  • paypal-usdPayPal USD (PYUSD) $ 0.999601
  • holotokenHolo (HOT) $ 0.002247
  • rocket-poolRocket Pool (RPL) $ 19.52
  • manta-networkManta Network (MANTA) $ 1.58
  • magaMAGA (TRUMP) $ 8.39
  • amp-tokenAmp (AMP) $ 0.007035
  • stader-ethxStader ETHx (ETHX) $ 3,186.19
  • ether-fiEther.fi (ETHFI) $ 3.41
  • corgiaiCorgiAI (CORGIAI) $ 0.001134
  • qtumQtum (QTUM) $ 3.68
  • zetachainZetaChain (ZETA) $ 1.63
  • skaleSKALE (SKL) $ 0.074490

46% of crypto lost from exploits is due to traditional Web2 flaws — Immunefi

0 96

46% of crypto lost from exploits is due to traditional Web2 flaws - Immunefi

  cointelegraph.com 30 m

46% of crypto lost from exploits is due to traditional Web2 flaws - Immunefi

A new report from blockchain security platform Immunefi suggests that nearly half of all crypto lost from Web3 exploits is due to Web2 security issues such as leaked private keys. The report, released on November 15, looked back at the history of crypto exploits in 2022, categorizing them into different types of vulnerabilities. It concluded that a full 46.48% of the crypto lost from exploits in 2022 was not from smart contract flaws but was rather from “infrastructure weaknesses” or issues with the developing firm’s computer systems.

46% of crypto lost from exploits is due to traditional Web2 flaws - Immunefi

Categories of Web3 vulnerabilities. Source: Immunefi.

When considering the number of incidents instead of the value of crypto lost, Web2 vulnerabilities were a smaller portion of the total at 26.56%, although they were still the second-largest category.

Immunefi’s report excluded exit scams or other frauds, as well as exploits that occurred solely because of market manipulations. It only considered attacks that occurred because of a security vulnerability. Of these, it found that attacks fall into three broad categories. First, some attacks occur because the smart contract contains a design flaw. Immunefi cited the BNB Chain bridge hack as an example of this type of vulnerability. Second, some attacks occur because, even though the smart contract is designed well, the code implementing the design is flawed. Immunefi cited the Qbit hack as an example of this category.

Finally, a third category of vulnerability is “infrastructure weaknesses,” which Immunefi defined as “the IT-infrastructure on which a smart contract operates—for example virtual machines, private keys, etc.” As an example of this type of vulnerability, Immunefi listed the Ronin bridge hack, which was caused by an attacker gaining control of 5 out of 9 Ronin nodes validator signatures.

Related: Uniswap DAO debate shows devs still struggle to secure cross-chain bridges

Immunefi broke down these categories further into subcategories. When it comes to infrastructure weaknesses, these can be caused by an employee leaking a private key (for example, by transmitting it across an insecure channel), using a weak passphrase for a key vault, problems with 2-factor authentication, DNS hijacking, BGP hijacking, a hot wallet compromise, or using weak encryption methods and storing them in plaintext.

While these infrastructure vulnerabilities caused the greatest amount of losses compared to other categories, the second-largest cause of losses was “cryptographic issues” such as Merkle tree errors, signature replayability, and predictable random number generation. Cryptographic issues resulted in 20.58% of the total value of losses in 2022.

Another common vulnerability was “weak/missing access control and/or input validation,” the report stated. This type of flaw resulted in only 4.62% of the losses in terms of value, but it was the largest contributor in terms of the number of incidents, as 30.47% of all incidents were caused by it.

Source

Leave A Reply

Your email address will not be published.