FixFloat 遭重複駭客攻擊，被竊 300 萬美元； Tether 凍結被竊資金

FixFloat 加密貨幣交易所再次被威脅組織利用，該組織此前曾造成 2600 萬美元的駭客攻擊。週二早些時候，區塊鏈安全公司發現了可疑活動，從 FixFloat 的以太坊熱錢包中提取了 280 萬美元。資金被轉移到可疑地址並兌換成 ETH，然後發送到 eXch 交易所。 FixFloat 確認了此攻擊，並將其歸因於第三方提供的服務中的漏洞。交易所向用戶保證，該漏洞僅影響公司資金，不會損害用戶資金。穩定幣巨頭 Tether 將 7 個從 FixFloat 接收資金的錢包地址列入黑名單，總計 28 萬美元的 USDT。

FixedFloat Hacked Again: $3 Million Stolen, Tether Blacklists Addresses

FixFloat 再次遭到駭客攻擊：300 萬美元被盜，Tether 黑名單地址

In a disturbing twist of events, cryptocurrency exchange FixedFloat has been targeted once more by the same threat actors responsible for a previous hack in February that resulted in the theft of $26 million worth of Bitcoin and Ether. Security experts and blockchain analysts have been closely monitoring the exchange's activities, and multiple suspicious transactions were flagged early Tuesday, raising red flags.

令人不安的事件發生了，加密貨幣交易所 FixFloat 再次成為 2 月駭客攻擊的相同威脅攻擊者的目標，這次駭客攻擊導致價值 2,600 萬美元的比特幣和以太幣被盜。安全專家和區塊鏈分析師一直在密切監視交易所的活動，週二早些時候，多起可疑交易被標記，引發了危險信號。

Cyvers Alerts, a renowned blockchain security firm, reported the alarming withdrawal of a staggering $2.8 million from FixedFloat's hot wallet on the Ethereum blockchain. The funds were swiftly transferred to a suspicious address that engaged in a series of cryptocurrency swaps, converting FixedFloat's assets into ETH before funneling them into the eXch exchange.

著名的區塊鏈安全公司 Cyvers Alerts 報告稱，從以太坊區塊鏈上的 FixFloat 熱錢包中提取了驚人的 280 萬美元。這些資金很快就被轉移到一個可疑地址，該地址進行了一系列加密貨幣互換，將 FixFloat 的資產轉換為 ETH，然後將其匯入 eXch 交易所。

CertiK, another leading blockchain security provider, has estimated the total losses from the exploit at around $3 million. The company noted that FixedFloat's website was experiencing technical difficulties, indicating ongoing efforts to address the situation.

另一家領先的區塊鏈安全供應商 CertiK 估計漏洞造成的總損失約 300 萬美元。該公司指出，FixedFloat 的網站遇到技術困難，顯示正在努力解決這個問題。

FixedFloat has since confirmed the attack, acknowledging that the perpetrators behind the February hack were once again involved. The exchange's statement highlighted its team's efforts to repel some of the attacks but expressed regret that the attackers had exploited a vulnerability in a third-party service that FixedFloat relies on.

此後，FixedFloat 確認了這次攻擊，並承認二月駭客攻擊背後的肇事者再次參與其中。該交易所的聲明強調了其團隊為擊退部分攻擊所做的努力，但對攻擊者利用了 FixFloat 所依賴的第三方服務中的漏洞表示遺憾。

Reassuringly, FixedFloat emphasized that the financial losses were limited to the company's own funds and did not affect user assets. An ongoing investigation is underway, but no further details have been released as of yet.

令人放心的是，FixedFloat強調，財務損失僅限於公司自有資金，不會影響用戶資產。調查正在進行中，但目前尚未公佈更多細節。

In response to the latest attack, Tether, the issuer of the widely used USDT stablecoin, has blacklisted seven wallet addresses that received a total of $280,000 from FixedFloat. PeckShield, a system vulnerability analysis and malware defense firm, identified these addresses and reported their involvement in the exploit.

為了應對最新的攻擊，廣泛使用的 USDT 穩定幣的發行者 Tether 已將 7 個錢包地址列入黑名單，這些地址從 FixFloat 接收了總計 28 萬美元的資金。 PeckShield 是一家系統漏洞分析和惡意軟體防禦公司，識別了這些位址並報告了它們參與了該漏洞。

FixedFloat's second breach within a short period raises concerns about the security of cryptocurrency exchanges. In February, the exchange suffered a $26 million loss in BTC and ETH, with the company stating that the attack was not perpetrated by its employees.

FixFloat 短時間內的第二次違規引發了人們對加密貨幣交易所安全性的擔憂。 2 月份，該交易所的 BTC 和 ETH 損失達 2,600 萬美元，該公司表示此次攻擊並非其員工所為。

The cryptocurrency industry has witnessed a surge in security incidents in recent weeks, with liquid staking protocol Prisma Finance falling victim to a $11.6 million exploit. The protocol's attacker has demanded a public apology and the identification of the development team as a means of restoring trust.

最近幾週，加密貨幣產業的安全事件激增，流動質押協議 Prisma Finance 成為價值 1,160 萬美元漏洞的受害者。該協議的攻擊者要求公開道歉並確認開發團隊的身份，以此作為恢復信任的手段。

SlowMist, a blockchain security firm, has reported that the web3 ecosystem experienced security incidents resulting in losses of $139 million in March 2024 alone. Insider malfeasance and smart contract vulnerabilities have been identified as significant factors contributing to these incidents.

區塊鏈安全公司 SlowMist 報告稱，僅在 2024 年 3 月，web3 生態系統就發生了安全事件，造成了 1.39 億美元的損失。內部瀆職和智慧合約漏洞已被確定為導致這些事件的重要因素。

The repeated targeting of cryptocurrency exchanges and the escalating losses highlight the need for robust security measures and ongoing vigilance within the industry. As web3 and cryptocurrency adoption continues to grow, ensuring the safety of user funds and the integrity of the ecosystem becomes paramount.

加密貨幣交易所的反覆攻擊和不斷升級的損失凸顯了行業內採取強有力的安全措施和持續保持警惕的必要性。隨著 web3 和加密貨幣的採用不斷增長，確保用戶資金的安全和生態系統的完整性變得至關重要。