Defendor

Sign in Subscribe

Latest

Largest NPM Supply Chain Attack Ever Steals Only 5 Cents—Millions Lost in Cleanup

Largest NPM Supply Chain Attack Ever Steals Only 5 Cents—Millions Lost in Cleanup

Source: Largest NPM Supply Chain Attack Steals a Few Cents Earlier, an attacker successfully hijacked the NPM account qix, which manages widely used packages like chalk and debug-js. Combined, these packages receive over 2 billion weekly downloads, making this breach the largest supply chain attack recorded in history. How the

Venus Protocol’s $13M Zoom Phish: When Emergency Powers Kill DeFi Decentralization

Venus Protocol’s $13M Zoom Phish: When Emergency Powers Kill DeFi Decentralization

Source: REKT.News - Phished Founder Liquidated Thief A single compromised Zoom client turned into a $13 million disaster for a Venus Protocol whale, but the real shock came after. Instead of watching the attacker slip away, Venus pulled off a rapid, drastic counterattack that reopened a fiery debate: How

August 2025 Web3 Hacks: $82.89M Lost in 9 Major Attacks

August 2025 Web3 Hacks: $82.89M Lost in 9 Major Attacks

Source: SlowMist Monthly Security Report: August Estimated Losses at $82.89 Million August 2025 was a costly month for Web3 security, with combined estimated losses nearing $82.89 million. This includes both direct hacks and widespread phishing scams targeting the ecosystem. Key Figures & Incident Breakdown * Total incidents: 9 major

Crypto Crime Explodes in H1 2025: $2.4B Lost to Hacks, Scams, and AI-Driven Attacks

Crypto Crime Explodes in H1 2025: $2.4B Lost to Hacks, Scams, and AI-Driven Attacks

Source: Mid-Year 2025 Crypto Crime Report – Blockscope The first half of 2025 has been tough for the blockchain ecosystem. While the total number of crypto crime incidents decreased compared to prior years, financial losses skyrocketed to an estimated $2.4 billion, marking a sharp rise in the impact of fewer,

BetterBank Drained $5M in Basic DeFi Exploit After Ignoring Audit Warnings

BetterBank Drained $5M in Basic DeFi Exploit After Ignoring Audit Warnings

Source: BetterBank Rekt What Happened? After just six weeks of operation, BetterBank’s "revolutionary" DeFi platform was exploited for $5 million due to a glaring design flaw. The attacker took advantage of the bonus minting system originally created to reward traders with a simple but effective method: * Created

Cross-Chain Bridge Hacks: The Secret MEV War That Profits Millions

Cross-Chain Bridge Hacks: The Secret MEV War That Profits Millions

Source: The Economics of MEV in Cross-Chain Bridge Exploits: A Game-Theoretic Analysis What Happens When Bridges Break? When a blockchain bridge is exploited, the fallout ripples across multiple chains, triggering a complex and intense competition among MEV bots, validators, traders, and arbitrageurs. This isn’t a simple hack; it’s

Integer Overflow & Underflow Threat Explained

Integer Overflow & Underflow Threat Explained

Source: The Top 10 Most Threatening Vulnerabilities in Web3 Protocols: #10 Integer Overflow/Underflow Integer overflow and underflow remain critical vulnerabilities in Web3 protocols. They occur when calculations produce results too large or too small to fit into a fixed-size storage slot, leading to corrupted states, halted executions, or disrupted