Sfund代幣滾滾：朝鮮黑客利用Seedify Bridge以120萬美元的加密搶劫

朝鮮黑客再次襲擊，以Seedify的跨鏈橋的目標，導致Sfund代幣價值發生99％。深入了解攻擊，歸因和行業反應。

In a dramatic turn of events, the crypto world was rocked by another North Korean-linked cyberattack. This time, Seedify's cross-chain bridge was the target, resulting in a staggering $1.2 million loss and a near-total collapse of the SFUND token. Let's unpack what happened, who's responsible, and what it means for the future of DeFi security.

在一個戲劇性的事件中，加密世界被另一個與朝鮮人聯繫的網絡攻擊所震撼。這次，Seedify的跨鏈橋是目標，導致了驚人的120萬美元虧損和Sfund令牌的幾乎完全崩潰。讓我們解開發生的事情，誰負責以及這對Defi安全的未來意味著什麼。

The Anatomy of the Attack

攻擊的解剖結構

On September 23, 2025, hackers linked to the North Korean group known as "Contagious Interview" infiltrated Seedify's system by compromising a developer's private keys. This allowed them to exploit a vulnerability in the platform's cross-chain bridge contract on Avalanche, minting massive amounts of unauthorized SFUND tokens. These tokens were then swiftly moved across multiple blockchain networks, including Ethereum, Arbitrum, and Base, before being largely converted on BNB Chain.

2025年9月23日，黑客與朝鮮集團有關，稱為“傳染性採訪”，通過損害了開發商的私鑰，從而滲透了Seedify的系統。這使他們能夠利用該平台在雪崩的跨鏈橋接合同中的脆弱性，從而造成了大量未經授權的Sfund令牌。然後，這些令牌在多個區塊鍊網絡中迅速移動，包括以太坊，仲裁和基礎，然後在很大程度上轉換為BNB鏈上。

Seedify founder Meta Alchemist lamented the attack, stating the hackers had undone 4.5 years of work. The fact that this breach occurred despite prior security audits from trusted firms raises serious concerns about the effectiveness of current DeFi security measures.

SEETIFY創始人Meta Alchemist對這次襲擊表示遺憾，並指出黑客工作已有4。5年的工作。儘管可信賴的公司事先進行了安全審計，但這種違規行為還是發生了這一事實引起了人們對當前DEFI安全措施有效性的嚴重關注。

SFUND's Price Plunge

Sfund的價格下跌

The SFUND token experienced a historic price crash, plummeting from $0.43 to nearly zero in minutes – a 99.99% drop. Trading volume surged as investors scrambled to exit their positions. While the token has since stabilized somewhat, the damage to investor confidence is significant.

Sfund代幣經歷了歷史性的價格崩潰，在幾分鐘內從0.43美元下降到幾乎零，下降了99.99％。隨著投資者爭先恐後地退出職位，交易量飆升。儘管令牌此後已經有所穩定，但對投資者信心的損害卻很大。

North Korea's Growing Crypto Crime Spree

朝鮮日益增長的加密犯罪狂潮

Blockchain investigator ZachXBT quickly attributed the attack to North Korean state-sponsored hackers, specifically the "Contagious Interview" group. This group has been linked to numerous previous incidents, highlighting a disturbing trend of increasingly sophisticated attacks on the crypto sector. North Korean hackers have been especially active in 2024 and 2025. With known DPRK-related losses already reaching $1.3 billion in 2024. The ByBit hack's $1.5 billion alone has already made 2025 "by far their most successful year to date".

區塊鏈的調查員Zachxbt迅速將攻擊歸因於北朝鮮國家贊助的黑客，特別是“傳染性訪談”小組。該小組與以前的許多事件有關，強調了對加密貨幣部門越來越複雜的攻擊的令人不安的趨勢。朝鮮黑客在2024年和2025年都特別活躍。在2024年，與DPRK有關的損失已經達到13億美元。僅拜比特·赫克（Bybit Hack）僅15億美元就已經使2025年獲得了2025年“迄今為止最成功的一年”。

Their methods are evolving, too. They're now using tactics like fake job applications, fraudulent interviews, and employee bribery to infiltrate crypto companies, making traditional security measures less effective.

他們的方法也在不斷發展。現在，他們正在使用諸如虛假工作申請，欺詐性訪談和員工賄賂諸如滲透加密公司之類的策略，從而使傳統的安全措施降低了。

Industry Response and Recovery Efforts

行業反應和恢復工作

Seedify has taken steps to mitigate the damage, coordinating with exchanges to halt SFUND trading and blacklisting the attackers' wallets. Binance founder Changpeng Zhao confirmed that security experts helped freeze $200,000 at HTX exchange. Meta Alchemist even offered a bounty to ZachXBT to help track down the stolen funds.

Seedify採取了措施減輕損失，與交流協調以製止Sfund交易並黑名單攻擊者的錢包。 Binance創始人Changpeng Zhao證實，安全專家在HTX Exchange凍結了20萬美元。 Meta Alchemist甚至向Zachxbt提供了賞金，以幫助追踪被盜的資金。

Implications for DeFi Security

對DEFI安全的影響

This attack underscores the vulnerabilities inherent in cross-chain bridge infrastructure. Despite security audits, flaws existed that allowed unauthorized token minting. Experts recommend implementing multi-signature controls, closer on-chain monitoring, and robust incident response plans. The competitive pressure to launch quickly often trumps thorough security testing, creating opportunities for malicious actors.

此攻擊強調了跨鏈橋基礎設施固有的漏洞。儘管進行了安全審核，但存在允許未經授權的令牌鑄造的缺陷。專家建議實施多簽名控件，近鏈監測以及強大的事件響應計劃。快速發射的競爭壓力通常勝過徹底的安全測試，為惡意演員創造了機會。

My Two Sats

我的兩個坐著

The Seedify hack is a wake-up call for the DeFi community. While the industry is quick to innovate, security often lags behind. It's crucial to prioritize security audits and implement robust measures to protect against increasingly sophisticated attacks, especially from state-sponsored actors like North Korea. The focus on direct exchange hacks has shifted to exploiting DeFi protocols and cross-chain infrastructure where security practices may be less mature. Is this a problem the whole ecosystem need to face?

SEDIFY HACK是對Defi社區的警鐘。儘管該行業很快創新，但安全通常會落後。優先考慮安全審計並採取強大的措施以防止越來越複雜的攻擊，尤其是朝鮮等國家贊助的參與者，至關重要。對直接交換黑客攻擊的重點已轉移到利用DEFI協議和跨鏈基礎架構，在這些方案中，安全實踐可能不那麼成熟。這是整個生態系統需要面對的問題嗎？

The Road Ahead

前面的道路

Seedify is working to rebuild trust with its community, but the token's massive price decline will undoubtedly have lasting effects. It serves as a stark reminder of the risks involved in the crypto world. Hopefully, the community will come back even stronger than before!

Seedify正在努力與其社區重建信任，但代幣的巨額價格下跌無疑會產生持久的影響。它可以清楚地提醒著加密貨幣世界所涉及的風險。希望社區會比以前更強大！

So, what's the takeaway? Keep your keys safe, DYOR (do your own research), and maybe invest in a really good hardware wallet. After all, in the wild west of crypto, a little paranoia can go a long way. Stay safe out there, folks!

那麼，收穫是什麼？保持鑰匙安全，染料（進行自己的研究），並可能投資一個非常好的硬件錢包。畢竟，在加密島的野外，一點偏執狂可以走很長一段路。伙計們，保持安全！