{"id":25400,"date":"2024-12-03T15:36:16","date_gmt":"2024-12-03T15:36:16","guid":{"rendered":"https:\/\/mycryptomania.com\/?p=25400"},"modified":"2024-12-03T15:36:16","modified_gmt":"2024-12-03T15:36:16","slug":"132m-stolen-through-crypto-crimes-top-5-crypto-hacks-of-november-2024","status":"publish","type":"post","link":"https:\/\/mycryptomania.com\/?p=25400","title":{"rendered":"$132M Stolen Through Crypto Crimes\u200a\u2014\u200aTop 5 Crypto Hacks of November 2024"},"content":{"rendered":"

$132M Stolen Through Crypto Crimes\u200a\u2014\u200aTop 5 Crypto Hacks of November\u00a02024<\/h3>\n

In November 2024, $132 million was stolen through various crypto crimes, with hacks alone accounting for over $99 million. Of this, $25.2 million was returned through a white-washed bug bounty, leaving the net loss from hacks at almost $74\u00a0million.<\/p>\n

Crypto scams resulted in $32 million in losses, while the WonderFi CEO was kidnapped and forced to pay a $1 million ransom. This incident adds to a worrying trend of direct crimes targeting individuals to steal their crypto funds this\u00a0year.<\/p>\n

Here is a breakdown of the top 5 hacking exploits of the\u00a0month!<\/h4>\n

Top 5 Crypto Hacks November 2024\u200a\u2014\u200aNefture<\/p>\n

\ud83d\udea8THALA LABS\u2014 $25,5 Million Lost &\u00a0Found<\/h4>\n

On November 15th, 2024, DeFi protocol Thala Labs suffered a $25.5 million exploit due to a vulnerability introduced in a recent update to their v1 farming contract.<\/em><\/strong><\/p>\n

The vulnerability allowed the attacker to exploit a failure in validating withdrawal requests, enabling them to withdraw more tokens than they had staked. By adding liquidity, unstaking tokens, and falsely appearing to have a stake, the attacker drained approximately $25.5 million from the project by swapping the stolen tokens for\u00a0lzUSDC.<\/p>\n

Unfortunately for the hacker, they left enough traces for law enforcement and crypto sleuths, including SealOne and Ogle, to quickly identify the exploiter. After negotiations, the unidentified hacker accepted a $300,000 bug bounty and returned the rest of the funds to the\u00a0team.<\/p>\n

\ud83d\udea8DEXX\u2014 $30 Million Lost By\u00a0Users<\/h4>\n

On November 16th, 2024, the memecoin trading platform DEXX fell victim to an exploit, resulting in the unauthorized transfer of more than $30 million from its users through private key exploits.<\/em><\/strong><\/p>\n

The attack targeted DEXX\u2019s centralized custody model for storing users\u2019 private keys, creating a single point of failure that the attacker exploited.<\/p>\n

While most victims lost less than $10,000, one individual suffered a significant loss exceeding $1 million. SlowMist also reported that over 8,600 Solana wallets were linked to the DEXX\u00a0hacker.<\/p>\n

\ud83d\udea8GIFTO\u200a\u2014\u200aHack or Mint-and-Dump?<\/h4>\n

Hours after Binance announced it would delist the GFT\/USDT trading pair on December 10th, 2024, the Gifto team allegedly minted 1.2 billion GFT tokens within an eight-hour window, depositing them into exchanges.<\/em><\/strong><\/p>\n

This action caused the GFT market price to plummet by 40%, resulting in over $13.5 million in gain for the\u00a0team.<\/p>\n

After blockchain sleuths raised alarms, the Gifto team took to Twitter to declare \u201ca critical security incident involving the GFT contract.\u201d While they claimed the GFT token contract had been compromised, suspicions remain that they may really be the ones behind the mint-and-dump.<\/p>\n

\ud83d\udea8POLTER FINANCE\u200a\u2014\u200aCopy-pasting code, praying and getting\u00a0hacked<\/h4>\n

On November 17th, Fantom-based Polter Finance DeFi was exploited for $12 million through an oracle manipulation attack caused by a faulty oracle\u00a0price.<\/em><\/strong><\/p>\n

Using flash loan, the attacker drained Polter\u2019s liquidity pools, siphoning the entire $12 million worth of tokens on the platform. It\u2019s important to note that Polter Finance deemed security audits unnecessary after copy-pasting an audited Geist code to operate their protocol.<\/p>\n

Source: Polter\u00a0Finance<\/a><\/p>\n

\ud83d\udea8DELTA PRIME\u200a\u2014\u200aTwice stolen, third time\u00a0warned?<\/h4>\n

DeltaPrime was hacked for $4.8 million due to a critical flaw in the periphery adapter contract.<\/em><\/strong><\/p>\n

The attacker, using a flash loan, exploited a smart contract vulnerability, resulting in the theft of $753K on Arbitrum, then moved to Avalanche, stealing an additional $4.1M. This hack follows DeltaPrime\u2019s $6 million private key exploit in September 2024.<\/p>\n

In both cases, PeckShield\u2019s audits had specifically flagged the vulnerabilities that were exploited, but DeltaPrime chose not to update their code, leaving those glaring vulnerabilities open for\u00a0attack.<\/p>\n

About us<\/h3>\n

Nefture<\/em><\/a> is a <\/em>Web3 real-time security and risk prevention platform<\/em><\/strong> that detects on-chain vulnerabilities and protects digital assets, protocols and asset managers from significant losses or\u00a0threats.<\/em>Nefture core services includes <\/em>Real-Time Transaction Security<\/em><\/strong> and a <\/em>Threat Monitoring Platform<\/em><\/strong> that provides accurate exploits detections and fully customized alerts covering hundreds of risk types with a clear expertise in\u00a0DeFi.<\/em>Today, Nefture proudly collaborates with leading projects and asset managers, providing them with unparalleled security solutions.<\/em>Book a\u00a0demo<\/em><\/strong><\/a>\ud83e\udd1d<\/em><\/p>\n

$132M Stolen Through Crypto Crimes\u200a\u2014\u200aTop 5 Crypto Hacks of November 2024<\/a> was originally published in Coinmonks<\/a> on Medium, where people are continuing the conversation by highlighting and responding to this story.<\/p>","protected":false},"excerpt":{"rendered":"

$132M Stolen Through Crypto Crimes\u200a\u2014\u200aTop 5 Crypto Hacks of November\u00a02024 In November 2024, $132 million was stolen through various crypto crimes, with hacks alone accounting for over $99 million. Of this, $25.2 million was returned through a white-washed bug bounty, leaving the net loss from hacks at almost $74\u00a0million. Crypto scams resulted in $32 million […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-25400","post","type-post","status-publish","format-standard","hentry","category-interesting"],"_links":{"self":[{"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/posts\/25400"}],"collection":[{"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=25400"}],"version-history":[{"count":0,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=\/wp\/v2\/posts\/25400\/revisions"}],"wp:attachment":[{"href":"https:\/\/mycryptomania.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=25400"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=25400"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mycryptomania.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=25400"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}