市值: $2.0885T 2.07%
成交额(24h): $86.6238B 9.31%
  • 市值: $2.0885T 2.07%
  • 成交额(24h): $86.6238B 9.31%
  • 恐惧与贪婪指数:
  • 市值: $2.0885T 2.07%
加密货币
话题
百科
资讯
加密话题
视频
热门新闻
加密货币
话题
百科
资讯
加密话题
视频
bitcoin
bitcoin

$87959.907984 USD

1.34%

ethereum
ethereum

$2920.497338 USD

3.04%

tether
tether

$0.999775 USD

0.00%

xrp
xrp

$2.237324 USD

8.12%

bnb
bnb

$860.243768 USD

0.90%

solana
solana

$138.089498 USD

5.43%

usd-coin
usd-coin

$0.999807 USD

0.01%

tron
tron

$0.272801 USD

-1.53%

dogecoin
dogecoin

$0.150904 USD

2.96%

cardano
cardano

$0.421635 USD

1.97%

hyperliquid
hyperliquid

$32.152445 USD

2.23%

bitcoin-cash
bitcoin-cash

$533.301069 USD

-1.94%

chainlink
chainlink

$12.953417 USD

2.68%

unus-sed-leo
unus-sed-leo

$9.535951 USD

0.73%

zcash
zcash

$521.483386 USD

-2.87%

加密货币新闻

Thorswap Hack and Bounty:一个扭曲的加密货币

2025/09/13 06:06

Thorswap用钱包来抓住针对其创始人的钱包,引发赏金狩猎并在Defi空间中提出重要的安全问题。获取最新消息!

Thorswap Hack and Bounty:一个扭曲的加密货币

THORSwap Hack and Bounty: A Crypto Whodunit with a Twist

Thorswap Hack and Bounty:一个扭曲的加密货币

The crypto world never sleeps, and neither do the hackers. Recently, THORSwap, a decentralized exchange (DEX) aggregator, found itself in the spotlight after an exploit. But it wasn't your typical protocol breach; instead, it targeted a personal wallet linked to none other than THORChain founder John-Paul Thorbjornsen. This incident has sparked a bounty offer and a serious conversation about crypto security. Here's the lowdown:

加密世界永远不会睡觉,黑客也没有。最近,分散的交易所(DEX)聚合器Thorswap在漏洞后发现了自己的聚光灯。但这不是您的典型协议违规;取而代之的是,它针对的是与Thorchain创始人John-Paul Thorbjornsen相关的个人钱包。这一事件引发了关于加密货币安全的赏金报价和认真的对话。这是低点:

The $1.2 Million Heist: What Happened?

耗资120万美元的抢劫:发生了什么?

According to reports, the exploit resulted in a loss estimated at around $1.2 million. Blockchain security firm PeckShield initially flagged the incident, causing some initial panic that THORChain itself might be compromised. Fortunately, the THORSwap team quickly clarified that the exploit was isolated to Thorbjornsen's personal wallet, not the THORChain protocol itself.

据报道,漏洞利用导致估计损失约为120万美元。区块链安全公司Peckshield最初标记了这一事件,引起了一些最初的恐慌,表明Thorchain本身可能会受到损害。幸运的是,Thorswap团队很快澄清说,该漏洞被隔离在Thorbjornsen的个人钱包中,而不是Thorchain协议本身。

The Victim: THORChain's Founder

受害者:Thorchain的创始人

On-chain sleuth ZachXBT pointed fingers at North Korean hackers, suggesting they made off with approximately $1.35 million in a scam targeting Thorbjornsen. The attack allegedly started with a compromised Telegram account, luring Thorbjornsen into clicking a malicious link disguised as a Zoom meeting invite. This led to the compromise of an older MetaMask account synced with iCloud Keychain.

链上侦探Zachxbt将手指指向朝鲜黑客,这表明他们用针对Thorbjornsen的骗局以大约135万美元的价格赚钱。据称,这次袭击是从折衷的电报帐户开始的,吸引了索伯·霍恩森(Thorbjornsen)点击伪装成变焦会议邀请的恶意链接。这导致了与iCloud钥匙扣同步的较旧的metamask帐户的妥协。

The Bounty: Return the Loot, No Questions Asked (Well, Almost)

赏金:返回战利品,没有问题(几乎)

In true crypto fashion, THORSwap responded with an on-chain bounty offer. The message to the hacker was simple: return the stolen $THOR tokens, and no legal action will be taken, provided it's done within 72 hours. This offer highlights the growing trend of using on-chain bounties as a means to recover stolen funds in the crypto space.

以真正的加密方式,Thorswap以链上的赏金报价做出了回应。给黑客的信息很简单:返回被盗的托尔托尔令牌,只要在72小时内完成,就不会采取法律行动。此优惠强调了使用链上赏金作为收回加密货币空间中被盗资金的一种方法的日益增长的趋势。

THORSwap's Response: "It Wasn't Us!"

Thorswap的回答:“不是我们!”

THORSwap CEO, known as "Paper X," emphasized that neither THORChain nor THORSwap's infrastructure was compromised. This clarification was crucial in reassuring users and investors that the core protocol remained secure. However, the incident did expose vulnerabilities in personal wallet security.

Thorswap首席执行官(称为“ Paper X”)强调,Thorchain和Thorswap的基础设施都没有受到损害。这种澄清对于让用户和投资者保证核心协议仍然安全至关重要。但是,该事件确实暴露了个人钱包安全方面的漏洞。

Lessons Learned: Security, Security, Security

经验教训:安全,安全,安全

Thorbjornsen himself highlighted the risks of storing sensitive keys on cloud services like iCloud. He advocated for the use of multi-signature wallets as a more secure alternative. The attack underscores the sophistication of modern crypto scams, often involving social engineering and phishing tactics. As the industry matures, users must prioritize security best practices to protect their assets.

Thorbjornsen本人强调了将敏感钥匙存储在Icloud等云服务上的风险。他主张使用多签名钱包作为更安全的选择。这次攻击强调了现代加密骗局的复杂性,通常涉及社会工程和网络钓鱼策略。随着行业的成熟,用户必须优先考虑安全最佳实践以保护其资产。

My Two Satoshis

我的两个satoshis

While the bounty offer is a clever move, it also highlights the reactive nature of security in crypto. We need to shift towards proactive measures, including user education and robust security protocols at the individual wallet level. Multi-sig wallets, hardware wallets, and a healthy dose of skepticism are no longer optional; they're essential.

尽管赏金报价是一个巧妙的举动,但它也突出了加密货币中安全性的反应性。我们需要转向积极的措施,包括在单个钱包级别的用户教育和强大的安全协议。多人钱包,硬件钱包和健康剂量的怀疑不再是可选的。这是必不可少的。

The Takeaway

外卖

The THORSwap incident serves as a stark reminder that even the most seasoned crypto veterans can fall victim to sophisticated attacks. It's a call to action for everyone in the space to double down on security and stay vigilant against evolving threats. In the meantime, let's hope the hacker has a change of heart and returns the funds. After all, who doesn't love a good redemption story? Plus, wouldn't it be a wild plot twist if they contacted THORSwap through Discord for the OTC deal? The crypto world – always delivering the drama!

Thorswap事件引起了一个明显的提醒,即使是经验丰富的加密货币退伍军人也可能成为复杂攻击的受害者。这是对空间中每个人的行动呼吁,要求对安全性进行加倍加倍,并保持警惕,以应对不断发展的威胁。同时,我们希望黑客改变了主意并返回资金。毕竟,谁不喜欢一个好的救赎故事?另外,如果他们通过OTC交易与Thorswap联系,这不是一个狂野的情节转折吗?加密世界 - 始终发挥戏剧性!

原文来源:bitget

免责声明:info@kdj.com

所提供的信息并非交易建议。根据本文提供的信息进行的任何投资,kdj.com不承担任何责任。加密货币具有高波动性,强烈建议您深入研究后,谨慎投资!

如您认为本网站上使用的内容侵犯了您的版权,请立即联系我们(info@kdj.com),我们将及时删除。

2026年07月02日 发表的其他文章