vulnerability

According to official news, the decentralized GPU cloud computing infrastructure platform Aethir confirmed that its Ethereum-related bridging contract was attacked. The team promptly disconnected the affected contract and worked with major exchanges to blacklist the hacker's wallet, limiting the losses to under $90,000.Previously, blockchain security company PeckShield estimated the losses to be $400,000. The attacker exploited Aethir's cross-chain smart contract AethirOFTAdapter to transfer the stolen funds from the BNB Chain to Tron.Aethir stated that its Ethereum mainnet ATH token supply was unaffected and plans to announce a detailed compensation plan and incident analysis next week, collaborating with exchanges such as Binance, Upbit, and Bithumb to freeze funds. The Web3 security platform ZeroShadow is participating in the investigation. Aethir aims to achieve revenue of $127.8 million by 2025, with over 440,000 GPU containers deployed globally.

According to monitoring by Arkham, Drift exploiters are transferring funds, and they have just transferred $14,800 worth of SOL to a new wallet.

Drift posted on platform X that it has confirmed key information related to the vulnerability attack. Drift is currently sending on-chain messages from address (0x093...C105) to four ETH wallets holding the stolen funds, indicating that it is ready to engage in dialogue and requesting the other party to contact them via Blockscan chat.Drift will share further updates with the community after third-party attribution is completed. Previously, it was reported that the Solana ecosystem Drift Protocol was attacked, resulting in losses of at least $200 million.

According to Jin Shi reports, Fed's Logan stated that some weakness and vulnerabilities have been observed in the private credit sector.

According to statistics from on-chain security company PeckShield, there were 20 major cryptocurrency hacking and vulnerability incidents in March, resulting in losses of approximately $52 million, an increase of about 96% compared to $26.5 million in February.Among them, Resolv Labs suffered a loss of over $25 million in USDT-pegged stablecoin USRT, as attackers exploited a vulnerability in its USR minting contract to mint an additional approximately 80 million uncollateralized stablecoins, leading to a price drop of about 80% for USR, and creating systemic bad debts in DeFi protocols such as Morpho Blue, Euler, and Fluid.In addition, X user "Sillytuna" reported that approximately $24 million in Aave Ethereum USDC (aEthUSDC) was stolen in an offline attack involving kidnapping and violent threats, with the attackers subsequently dispersing the funds through Bitcoin, Monero, and multiple Layer 2 networks.

The privacy coin Zcash recently disclosed and fixed a critical security vulnerability that could have been exploited by malicious miners to transfer over 25,000 ZEC (approximately 6.5 million USD) from the deprecated Sprout privacy pool. Security researcher Alex "Scalar" Sol disclosed on March 23 that the vulnerability stemmed from the zcashd node skipping proof verification when processing transactions involving the Sprout pool.The official statement indicated that the vulnerability had existed since July 2020 but had not been actively exploited, and user funds remained safe at all times. The development team has released version 6.12.0 to complete the fix, and mainstream mining pools have completed the upgrade deployment within a few days. Additionally, the unaffected Zebra full node implementation has the capability to trigger a chain fork, providing extra protection in the event of exploitation.It was disclosed that although the Sprout pool closed to new deposits in November 2020, approximately 25,424 ZEC remained untransferred. Even if the vulnerability were exploited, Zcash's "turnstile" mechanism would prevent inflationary issuance, ensuring that the total supply would not be breached. This vulnerability was discovered with the assistance of AI, and the researcher will receive a total bounty of 200 ZEC (approximately 51,000 USD). It is worth noting that this is not the first time Zcash has encountered a significant vulnerability; as early as 2019, it had fixed a serious flaw that could lead to unlimited issuance.

According to GoPlus citing a Koi report, the Claude Chrome extension under Anthropic has a high-risk prompt injection vulnerability, affecting all versions of the extension below 1.41.Attackers can construct malicious web pages that silently load an iframe containing a cross-site scripting (XSS) vulnerability in the background, executing malicious payloads within the a-cdn.claude.ai subdomain. Since this subdomain is on the extension's trust whitelist, attackers can directly send malicious prompts to the Claude extension and execute them automatically, without requiring user authorization or any clicks, leaving the victim unaware.This vulnerability can allow attackers to manipulate the Claude extension to read users' Google Drive documents, steal business access tokens, or export chat logs, and can take over the current browser session to perform sensitive operations like sending emails as the victim. GoPlus recommends that users immediately update the Claude extension to version 1.41 or above and remain vigilant against phishing links.

According to a security alert released by GoPlus Security, Silverfort security researchers discovered a serious vulnerability in OpenClaw's skill repository ClawHub. Attackers can bypass all protective mechanisms by calling the internal function downloads:increment, allowing them to inflate the download count to over 20,000 in just a few minutes with a single curl request, thereby pushing malicious skills to the top of search rankings and enticing users or AI Agents to install them automatically.Once the malicious skill is running, it can steal sensitive data such as cryptocurrency wallets and API keys. The vulnerability has been patched within 24 hours. GoPlus advises users that a high download count does not equal safety and recommends using AgentGuard for security scanning and protection.

The Chief Information Security Officer of Slow Fog, 23pds (Shan Ge), posted on the X platform stating that there are reports that the LiteLLM vulnerability attackers have stolen approximately 300GB of data and compromised about 500,000 credentials. He advises all cryptocurrency developers to immediately verify and quickly rotate relevant keys and credentials, check logs, access records, and the exposure of sensitive data to avoid losses similar to the Trust Wallet incident.Previously, it was reported that LiteLLM, which has a monthly download volume of 97 million, suffered a supply chain attack, allowing the simple installation to steal all sensitive credentials, including SSH keys.

According to on-chain analysts, a vulnerability in ResolvLabs' stablecoin has been suspected, and the team has not yet responded. A certain address minted 50,000,000 USR using 100,000 USDC, causing USR to temporarily plummet to $0.257, a drop of 74.2%. It has currently rebounded to $0.7847.

The China Academy of Information and Communications Technology, in collaboration with Shanghai Jiao Tong University and Nanjing University, discovered a high-risk vulnerability driven by LLM command injection in the bash-tools module of the open-source autonomous intelligent agent framework OpenClaw during a security audit.This vulnerability arises from the system's failure to strictly escape command line parameters generated by LLM, allowing attackers to bypass regex defenses through inducive prompts, achieving remote code execution on the host machine and stealing sensitive data.The research team has completed attack verification in various mainstream model environments, initiated a responsible vulnerability disclosure process, and submitted repair suggestions to the NVDB Artificial Intelligence Product Security Vulnerability Professional Database (CAIVD) and the GitHub community.

Venus Protocol released a statement regarding the THE market event, stating that this incident was not a flash loan attack, but rather a result of the attacker exploiting a supply cap vulnerability in the old code of the protocol. The team indicated that the attacker had been accumulating THE tokens for about 9 months, gradually establishing a dominant supply position on Venus.The announcement pointed out that the attacker bypassed the normal deposit process by directly transferring THE tokens into the protocol contract, thereby breaking through the supply cap limit of 14.5 million THE. They manipulated DEX prices by taking advantage of the low on-chain liquidity. As the external price was gradually reflected by the TWAP oracle, the attacker borrowed assets (such as CAKE, BNB, etc.) against the inflated collateral value, then bought more THE to drive up the price, and continuously transferred THE into the vTHE market to increase the collateral value. This cycle once pushed the price from about $0.27 to about $0.53, ultimately leaving bad debt in the protocol after the positions were liquidated.Venus stated that it has currently suspended the THE market, reduced its collateral factor to 0, and suspended withdrawals. Additionally, as a precautionary measure, the collateral factors for 8 markets including BCH, LTC, AAVE, POL, FIL, TWT, UNI, and lisUSD have also been reduced to 0. The team and security partners are continuing to investigate and will release a complete post-analysis report in the future.

White hat hacker f4lc0n posted on the X platform revealing that he discovered a "critical" vulnerability in the Injective protocol that could lead to over $500 million in assets being directly withdrawn from the blockchain. However, the project team only offered him a $50,000 bounty, far below the planned maximum limit of $500,000 for this level of severity.f4lc0n stated that the vulnerability allows any user to empty any account on the blockchain without special permissions. After submitting a report through Immunefi, the Injective team initiated a mainnet upgrade vote the next day to fix the vulnerability, but they were "unreachable" for the following three months.Currently, f4lc0n has disputed the amount of the bounty and stated that the $50,000 bounty has not yet been paid. He announced that he will allocate 10% of future bug bounty earnings to continue publicizing this matter until Injective pays the compensation as per the standard.

OKX founder and CEO Star responded to the "hacker attack incident involving a plugin vulnerability by the Wuhan Anshun Technology team" by stating, "The OKX Wallet security team has completed its investigation, and describing the original text as 'OKX wallet vulnerability' is inaccurate. Two points need clarification:This incident is not a security vulnerability of the OKX Web3 wallet. The attack method involved hackers controlling user devices through Trojan software, then stealing locally stored encrypted files and passwords by tampering with webpage JS code to implant hooks or by monitoring keyboard inputs.The OKX Web3 wallet is a 100% self-custody wallet. Private keys and passwords exist only on the user's own device, and OKX cannot access or control user assets. However, if the user's device has already been compromised by hackers, then no wallet—including MetaMask—can guarantee security. It's like a thief has already been able to operate your computer and see all your keyboard inputs.Users are advised to avoid installing software or plugins from unknown sources, regularly check device security, and properly protect their mnemonic phrases and private keys."It is reported that the Wuhan Anshun Technology team controlled a large number of user terminals to steal mnemonic phrases and remotely transfer digital assets, with the amount involved reaching 7 million dollars.

According to The Block, Ledger's security research team Donjon has discovered a vulnerability in the secure boot chain of MediaTek processors, allowing attackers to extract encryption keys via USB connection before the operating system loads, provided they have physical access to the phone. This could enable them to decrypt device storage and obtain the device PIN code and encrypted wallet mnemonic within approximately 45 seconds.In proof-of-concept tests, the vulnerability successfully extracted sensitive data from wallet applications such as Trust Wallet, Kraken Wallet, and Phantom. Researchers indicate that this vulnerability may affect about 25% of Android phones, involving models that use MediaTek chips and Trustonic's Trusted Execution Environment. Ledger's Chief Technology Officer Charles Guillemet stated that smartphones were never designed to be vaults. Although the vulnerability can be patched, it highlights the inherent risks of storing keys on non-secure devices, and users are advised to update security patches as soon as possible.According to data from TRM Labs, over 80% of the $2.1 billion in stolen crypto assets in the first half of 2025 stemmed from infrastructure attacks such as private key theft, mnemonic theft, and front-end hijacking. Chainalysis data shows that losses from crypto asset theft exceeded $3.41 billion in 2024, with the proportion of stolen personal wallets rising from 7.3% in 2022 to 44% in 2024.

OpenClaw founder Peter Steinberger criticized the GitHub security vulnerability reporting process for multiple issues. He pointed out that currently, vulnerability reports are only accessible to administrators, making it difficult for teams to effectively distribute and collaborate on handling them.In addition, GitHub's API functionality for vulnerability reporting is insufficient, as it cannot read or post comments through automated agents, which limits the automation capabilities of the security response process. Peter Steinberger also specifically noted that the current vulnerability reports are filled with a large amount of low-quality AI-generated content, requiring hours to sift through, further increasing the burden of security handling work.

Cosmos Labs posted on the X platform, stating that a vulnerability has recently been discovered, affecting certain blockchains built on the Cosmos EVM Stack. This vulnerability has impacted the Layer 1 blockchain Saga in the production environment.Cosmos Labs stated that its team has been investigating the issue in collaboration with Saga and ecosystem partners, and has coordinated the implementation of mitigation measures. A security patch has now been released to the affected blockchains.

HyperEVM's native non-custodial lending protocol HypurrFi stated on platform X that there is a "rounding error" vulnerability in versions prior to Aave V3 3.5. Under specific conditions, an attacker could extract underlying tokens by repeatedly executing supply/extract and borrow/repay loop operations.The affected markets are XAUT0 and UBTC in HypurrFi Pooled. Currently, user funds are not at risk. To ensure safety, related markets have suspended new supply and lending operations, while withdrawal and repayment functions remain operational, and other markets are running normally. HypurrFi added that it quickly identified the issue on-chain through its internal monitoring system and promptly froze the affected markets. They are also collaborating with other Aave deployers and security researchers to address the issue and have invited other Aave fork projects to reach out for more security information.

HyperEVM's native non-custodial lending protocol HypurrFi stated on platform X that there is a "rounding error" vulnerability in versions prior to Aave V3 3.5. Under specific conditions, an attacker could extract underlying tokens by repeatedly executing supply/extract and borrow/repay loop operations.The affected markets are XAUT0 and UBTC in HypurrFi Pooled. Currently, user funds are not at risk. To ensure safety, related markets have suspended new supply and lending operations, while withdrawal and repayment functions remain operational, and other markets are running normally. HypurrFi added that it quickly identified the issue on-chain through its internal monitoring system and promptly froze the affected markets. They are also collaborating with other Aave deployers and security researchers to address the issue and have invited other Aave fork projects to reach out for more security information.

Web3 security company GoPlus stated that the AI development tool OpenClaw has recently been reported to have experienced a self-attack security incident. During the execution of automated tasks, the system constructed an incorrect Bash command while calling Shell commands to create a GitHub Issue, inadvertently triggering command injection, which led to the exposure of a large number of sensitive environment variables.In the incident, the AI-generated string contained a set wrapped in backticks, which was interpreted by Bash as command substitution and executed automatically. Since Bash outputs all current environment variables when executing set without parameters, this ultimately resulted in over 100 lines of sensitive information (including Telegram keys, authentication tokens, etc.) being directly written to the GitHub Issue and publicly published. GoPlus recommends that in AI automation development or testing scenarios, API calls should be used instead of directly concatenating Shell commands, and the principle of least privilege should be followed to isolate environment variables. Additionally, high-risk execution modes should be disabled, and a manual review mechanism should be introduced for critical operations.