8 月區塊鏈安全報告：網路釣魚受害者達 9K，Ronin 駭客返還 1,200 萬美元

一份新的區塊鏈安全報告顯示，上個月加密貨幣領域的安全事件猖獗，損失估計已達到驚人的 3.16 億美元。

KEY POINTS

重點

Last month, there was a surge in security incidents in the cryptocurrency industry, with an estimated loss of $316 million, and only $13.58 million was recovered, a new blockchain security report revealed.

一份新的區塊鏈安全報告顯示，上個月，加密貨幣產業安全事件激增，預計損失達 3.16 億美元，但僅追回 1,358 萬美元。

The attacks ranged from account compromises, frontend breaches, contract vulnerabilities, to a method that many exploiters have benefited from over the years: phishing, according to blockchain security firm SlowMist.

根據區塊鏈安全公司 SlowMist 的說法，這些攻擊的範圍包括帳戶洩露、前端違規、合約漏洞，以及多年來許多利用者受益的方法：網路釣魚。

Phishing Victims Top 9K

網路釣魚受害者前 9K

SlowMist's August security report, published Monday, showed that there were 9,145 victims of phishing scams in the crypto industry last month, according to data from Web3 anti-fraud platform Scam Sniffer.

週一發布的慢霧 8 月安全報告顯示，根據 Web3 反詐騙平台 Scam Sniffer 的數據，上個月加密產業有 9,145 名網路釣魚詐騙受害者。

One victim lost a staggering $55.43 million in DAI tokens after signing a phishing transaction that targeted their DeFi Saver Proxy. Analysis by anti-money laundering tracking system MistTrack later revealed that most of the stolen tokens were later swapped for Ether (ETH).

一名受害者在簽署針對其 DeFi Saver 代理商的網路釣魚交易後損失了 5543 萬美元的 DAI 代幣。反洗錢追蹤系統 MistTrack 隨後的分析顯示，大部分被盜代幣後來都被換成了以太幣（ETH）。

SlowMist noted that most of the phishing attacks in August occurred on Discord. It also highlighted that hackers have been targeting well-known blockchain projects in recent years.

慢霧指出，8 月的大部分網路釣魚攻擊都發生在 Discord 上。它還強調，近年來駭客一直將目標瞄準知名的區塊鏈項目。

Top Exploits in August

八月的熱門攻擊

Among the top security incidents analyzed by SlowMist was the hacking of the Ronin Network, where the gaming blockchain network experienced abnormal withdrawals of cross-chain assets on its Ronin Bridge project.

慢霧分析的首要安全事件之一是Ronin Network被駭客攻擊的事件，其中遊戲區塊鏈網路Ronin Bridge專案出現了跨鏈資產異常提取的情況。

The Ronin case is particularly interesting because the hackers returned the entire $12 million in pilfered Ether and USD Coin (USDC) tokens. The gaming blockchain said it was alerted by "white hats" to the security breach, which led to the temporary pausing of the bridge.

Ronin 案特別有趣，因為駭客歸還了全部 1,200 萬美元被盜的以太幣和美元硬幣 (USDC) 代幣。遊戲區塊鏈表示，它收到了「白帽」關於安全漏洞的警報，導致橋樑暫時暫停。

There was a lot of buzz about the incident, with some crypto users and Ronin gamers questioning why the white hat initially wanted to "negotiate" instead of just returning the funds. The white hat was paid a $500,000 bounty, according to SlowMist.

關於這一事件引起了很多熱議，一些加密貨幣用戶和 Ronin 遊戲玩家質疑為什麼白帽子最初想要「談判」而不是僅僅歸還資金。據慢霧科技稱，白帽子獲得了 50 萬美元的賞金。

Another top incident last month was the "suspicious transfer" of a whopping 4,064 Bitcoin (then valued at about $238 million) that was first detected by prominent crypto sleuth ZachXBT, who revealed that the stolen funds were immediately moved to various crypto platforms, including ThorChain. ZachXBT later announced that $205,000 had been returned to the victim.

上個月的另一起重大事件是4,064 個比特幣（當時價值約2.38 億美元）的“可疑轉移”，這起事件首先由著名加密貨幣偵探ZachXBT 發現，他透露，被盜資金立即轉移到了各種加密平台，包括ThorChain 。 ZachXBT 隨後宣布已將 20.5 萬美元返還給受害者。

Seven hours ago a suspicious transfer was made from a potential victim for 4064 BTC ($238M)

七小時前，潛在受害者進行了 4064 BTC（2.38 億美元）的可疑轉賬

Transaction hash4b277ba298830ea538086114803b9487558bb093b5083e383e94db687fbe9090

交易哈希4b277ba298830ea538086114803b9487558bb093b5083e383e94db687fbe9090

Funds were quickly transferred to ThorChain, eXch, Kucoin, ChangeNow, Railgun, Avalanche Bridge.

資金迅速轉移到ThorChain、eXch、Kucoin、ChangeNow、Railgun、Avalanche Bridge。

Crypto Losses Still Very High

加密貨幣損失仍然很高

The August losses are much higher than what the crypto industry lost in July, which was around $266 million to exploits and scams. July, however, was a big month for the sector with the highly publicized $230 million exploit of Indian crypto exchange giant WazirX.

8 月的損失遠高於 7 月加密產業因漏洞和詐騙而損失的約 2.66 億美元。然而，7 月對該行業來說是一個重要的月份，印度加密貨幣交易所巨頭 WazirX 的 2.3 億美元漏洞被廣為人知。

Akshay Nassa, founder of 100% encrypted decentralized exchange Chimp Exchange, said at the time that the state of security in the industry only goes to show how exploiters are evolving their methods just as much as crypto companies are working to improve their security measures.

100% 加密去中心化交易所 Chimp Exchange 的創始人 Akshay Nassa 當時表示，行業的安全狀況只能表明，利用者正在不斷改進他們的方法，就像加密公司正在努力改進其安全措施一樣。