cyvers

According to Cyvers Alerts monitoring, a trader suffered a poisoning attack about an hour ago, resulting in a loss of approximately $600,000 worth of USDT.While attempting to send funds to 0x77f6ca8E...2E087a346, he mistakenly sent the transaction to the malicious spoofed address 0x77f6A6F6...DFdA8A346, warning users to be cautious of the associated risks.

According to market news, the system has detected an "address poisoning" attack incident involving a total of approximately 509,000 USDT. The victim originally intended to transfer funds to the address 0xe842...D3E6F, but due to the similar case sensitivity of the address, mistakenly sent the funds to the forged address 0xe842...f3e6F. After the initial erroneous transfer of 5,000 USDT, another transfer of 509,000 USDT occurred within two minutes. Cyvers reminds users to stay vigilant and be cautious of forged address scams.

Cyvers announced the detection of multiple suspicious transactions on the ARB network, involving a proxy contract, resulting in a loss of approximately $1.5 million.Preliminary analysis indicates that a single deployer of the USDGambit and TLP projects may have lost access to their account, after which the attacker deployed a new contract and updated the ProxyAdmin permissions to take control of the account. The stolen funds were then transferred to the ETH network and deposited into TornadoCash.

ChainCatcher message, the system of the security company Cyvers detected a suspicious transaction involving UXLINK amounting to $11.3 million.An Ethereum address executed a delegateCall, removed the admin privileges, and called "addOwnerWithThreshold", then transferred out $4 million in USDT, $500,000 in USDC, 3.7 WBTC, and 25 ETH. All USDC/USDT were exchanged for DAI on the Ethereum network, while USDT on the Arbitrum network was exchanged for ETH and cross-chain transferred to the Ethereum network. A few minutes later, another address received 10 million UXLINK (approximately $3 million) and began exchanging, currently still holding about $2.2 million unexchanged (transactions are still ongoing).

ChainCatcher message, DeFi security monitoring platform Cyvers Alerts latest warning: A security incident has occurred on the BNB chain's Venus protocol, with approximately $27 million in assets at risk. The key information is as follows:The attacker implemented the attack by updating the Venus core pool controller (Core Pool Comptroller) to a malicious contract address;Affected assets include various tokens such as vUSDC, vETH, etc. - the stolen funds are still held in the attacker's contract and have not yet been exchanged.Users of the Venus protocol should closely monitor asset security and are advised to suspend related operations until further notice from the official.

ChainCatcher message, according to Cyvers Alerts monitoring, "suspicious transactions involving CrediX have been detected on the Sonic network.An address that obtained funds from Tornado Cash on the ETH network transferred the funds to the Sonic network and borrowed approximately 2.64 million from CrediX."

ChainCatcher message, Cyvers Alerts posted on social media, "Multiple suspicious transactions involving WOO X have been detected, covering BTC, ETH, BNB, and ARB networks, with expected losses exceeding 12 million dollars.On the Ethereum network, a suspicious address received 1 million dollars worth of

ChainCatcher news, according to a tweet from Cyvers Alerts, has detected multiple suspicious transactions on ZKSpace, while its official X account has been frozen. The affected funds amount to approximately 4 million USD, and currently, about 1.3 million USD, including USDT and USDC, has been exchanged for ETH and gradually deposited into Tornado Cash.

ChainCatcher news, blockchain security company Cyvers Alerts reports that "multiple suspicious transactions related to the Bitcoin Layer 2 solution Nervos Network have been detected. An anonymous address appears to control the bridge and has stolen approximately $3 million worth of cryptocurrency.The stolen assets were exchanged for Ethereum (ETH) and transferred to the cryptocurrency mixing protocol TornadoCash (TORN). Nervos Network is currently suspending the protocol and taking countermeasures."

ChainCatcher message, Cyvers Alerts posted on platform X stating that the system detected a suspected attack on the Cork Protocol, resulting in a loss of approximately 12 million USD.The attacker deployed a malicious contract on May 28, 2025, at 11:23:19 UTC, funded by the address 0x4771...762B (possibly a service provider).Just 16 minutes and 45 seconds later, the attacker launched the attack, successfully acquiring 3,761.87 wstETH, and quickly exchanged it for ETH. Currently, the funds have not been transferred to other addresses.

ChainCatcher message, according to Cyvers Alerts posted on platform X, our system has detected a vulnerability in the Mobius token smart contract, resulting in the theft of over $2.15 million worth of Mobius tokens ($MBU) on the BNB chain.Two minutes before the vulnerability occurred, our system detected the deployment of a malicious smart contract, with the ultimate goal being the Mobius token smart contract. The attacker executed multiple malicious transactions through the contract, targeting the victim's address.

ChainCatcher message, Cyvers Alerts posted on platform X stating that its system detected suspicious transactions on the Base chain involving Zora, where an attacker stole approximately 5,500 ZORA tokens, worth about $129,000. The stolen funds have now been exchanged and bridged to the Ethereum network.

ChainCatcher message, Cyvers Alerts posted on platform X indicating that suspicious transactions have been detected on the Arbitrum chain involving the Numa protocol, approximately 82,279.85490689 NUMA and 283 rETH may have been stolen, and the attacker has bridged the related assets to Ethereum and deposited the funds into Tornado.cash.

ChainCatcher news, according to monitoring by Cyvers, the ZKsync hacker has transferred 1.7 million tokens across chains to ETH and deposited 10 ETH into a HitBTC address.

ChainCatcher message, according to Cyvers Alerts monitoring, the system has detected multiple suspicious transactions involving UPCX Official. It appears that someone has gained access to address 0x4C, upgraded the "ProxyAdmin" contract, and executed the "withdrawByAdmin" function, resulting in the transfer of 18.4 million UPC (approximately 70 million USD) from three different admin accounts.

ChainCatcher message, Cyvers Alerts posted on platform X indicating that suspicious transactions related to the founder of the decentralized social protocol Mask Network, Suji Yan, have been detected. A suspicious address received nearly 4 million dollars in digital assets, including: 113 ETH, 923 WETH, 301 ezETH, 156 weETH, 90 pufET, 8400 MASK, 50000 USDT, and 15 swETH.It is reported that the stolen assets were immediately exchanged for ETH and distributed across six different addresses.

ChainCatcher message, according to Cyvers Alerts monitoring, the attack on Infini was due to hackers secretly retaining administrative privileges.The hackers operated from 0xc49b5e5b9da66b9126c1a62e9761e6b2147de3e1, which was originally developed as part of the Infini project for this contract. However, after the project was delivered, they secretly retained the admin privileges.

ChainCatcher news, according to Cyvers Alerts monitoring, a victim lost 68,100 USDT due to an address poisoning attack. It is reported that the victim received multiple attacks on February 14, 2025, and ultimately copied the wrong address, resulting in an erroneous transfer of 68,100 USDT.

ChainCatcher news, according to Cyvers Alerts monitoring, the lending protocol zkLend suffered a vulnerability attack on the Starknet network, resulting in a loss of $4.9 million. The attacker attempted to transfer the stolen funds across chains to Ethereum and launder them through the privacy protocol Railgun, but due to Railgun's policy restrictions, the funds were forcibly returned to the original address.In previous news, zkLend has offered a 10% white hat hacker bounty to the attacker through on-chain messages, and the related transaction has been confirmed on the Ethereum blockchain.

ChainCatcher news, Cyvers Alerts posted on platform X that the system detected multiple suspicious transactions involving hot wallets across several chains. Currently, digital assets worth over $29 million have been transferred to suspicious addresses on chains such as BNB, ETH, OP, POL, BASE, and ARB, and these addresses have begun exchanging assets for ETH.ChainCatcher previously reported that according to monitoring by Shield, the hot wallet of the cryptocurrency derivatives trading platform Phemex has seen large amounts of suspicious outflows.