bitcoin
bitcoin

$95070.814566 USD

0.06%

ethereum
ethereum

$3436.348314 USD

3.88%

tether
tether

$0.998640 USD

-0.03%

xrp
xrp

$2.297998 USD

5.50%

bnb
bnb

$689.151598 USD

1.64%

solana
solana

$194.728391 USD

7.35%

dogecoin
dogecoin

$0.327361 USD

5.49%

usd-coin
usd-coin

$1.000099 USD

0.02%

cardano
cardano

$0.919775 USD

4.53%

tron
tron

$0.254741 USD

2.50%

avalanche
avalanche

$39.833166 USD

9.80%

chainlink
chainlink

$24.509342 USD

8.33%

toncoin
toncoin

$5.720606 USD

6.07%

sui
sui

$4.613049 USD

8.55%

shiba-inu
shiba-inu

$0.000023 USD

6.14%

加密貨幣新聞文章

隨著北韓駭客可能針對該計畫的猜測激增,超流動性回落

2024/12/24 04:23

HYPE代幣價格近兩天暴跌,穩定幣USDC約2.1億美元存款流出平台

隨著北韓駭客可能針對該計畫的猜測激增,超流動性回落

Hyperliquid, a blockchain undertaking constructed for buying and selling that ascended to the highest echelons of crypto headlines following final month’s airdrop of its new HYPE token, now seems to be beating a retreat because of speculation surging on social media that it could be within the crosshairs of North Korean hackers.  

Hyperliquid 是一家專為買賣而構建的區塊鏈企業,在上個月空投新的HYPE 代幣後,該企業登上了加密貨幣頭條新聞的最高梯隊,但現在似乎正在撤退,因為社交媒體上猜測它可能成為焦點。

The HYPE token value has plummeted within the final two days, and a few $210 million of deposits within the stablecoin USDC have flowed off the platform, a report-breaking day by day quantity, in keeping with a dashboard on the analytics platform Dune Analytics created by Hashed_Official. As of press time, remaining deposits stood at roughly $2.1 billion. 

HYPE 代幣價值在過去兩天內暴跌,穩定幣 USDC 中的 2.1 億美元存款已從平台流出,根據 Dune Analytics 創建的分析平台上的儀表板,這一數字每天都在打破報告。截至發稿時,剩餘存款約21億美元。

Some canny opportunists have even spun up a prediction market on Polymarket for users to bet on whether the undertaking could be exploited earlier than February. Current odds point to a 14% probability of that taking place. 

一些精明的機會主義者甚至在 Polymarket 上設立了一個預測市場,供用戶在 2 月之前押注該項目是否會被利用。目前的賠率表明這種情況發生的可能性為 14%。

The speculation was touched off as Taylor Monahan, a developer at crypto wallet provider MetaMask, shared her worries on social media. CoinDesk famous the outflows in a tale printed earlier Monday. 

加密錢包提供商 MetaMask 的開發人員 Taylor Monahan 在社交媒體上分享了她的擔憂,引發了這一猜測。 CoinDesk 在周一早些時候發表的一篇報導中指出了資金外流的情況。

Monahan indicated that wallet addresses identified as belonging to suspected North Koreans have been actively using Hyperliquid – one in every of which was liquidated on Saturday when the worth of Ethereum’s cryptocurrency, ETH, dropped, leading to a loss of about half 1,000,000 dollars.

莫納漢表示,被認定為疑似北韓人的錢包地址一直在積極使用Hyperliquid——週六,當以太坊加密貨幣ETH 的價值下跌時,每個錢包地址都被清算,導致約100 萬美元的損失。

Read More: Polygon Community to Reject Proposal for Yield on Bridged Assets, but Beef With Aave Escalates

閱讀更多:Polygon 社區拒絕橋接資產收益提案,但與 Aave 的矛盾升級

On Sunday, Monahan posted on X a screenshot of a message she says she wrote two weeks ago to the Hyperliquid team — as evidence that she had warned them of the elevated risk.   

週日,莫納漢在 X 上發布了一張她自稱兩週前寫給 Hyperliquid 團隊的消息的屏幕截圖,作為她警告他們風險升高的證據。

“I am quite concerned that you guys are at increased risk due to the fact we know that these specific threat actors are now intimately familiar with your platform,” Monahan wrote at the time, according to the screenshot. She emphasized that North Korean hackers are sophisticated, creative, and persistent.

根據螢幕截圖,莫納漢當時寫道:“我非常擔心你們面臨的風險會增加,因為我們知道這些特定的威脅行為者現在非常熟悉你們的平台。”她強調,北韓駭客經驗豐富、富有創意且堅持不懈。

In her recent post, Monahan shared 12 addresses she identified as likely belonging to North Koreans that are active on Hyperliquid. None of the addresses appear to be on a sanctions list administered by the U.S. Office of Foreign Assets Control, Unchained confirmed.

Monahan 在最近的帖子中分享了 12 個她認為可能屬於活躍於 Hyperliquid 的朝鮮人的地址。 Unchained 證實,這些地址似乎都不在美國外國資產管制辦公室管理的製裁名單上。

Monahan said she shared her concerns on X, because the Hyperliquid team had “ghosted” her, a colloquialism for not responding. 

莫納漢表示,她對 X 表達了自己的擔憂,因為 Hyperliquid 團隊「幽靈」了她,這是一種通俗說法,表示沒有回應。

A pseudonymous developer for the Hyperliquid project, who goes by @iliensinc, wrote in the protocol’s Discord server early Monday that, “Hyperliquid Labs is aware of reports circulating regarding activity by supposed DPRK addresses.”

週一早些時候,Hyperliquid 項目的一位化名開發人員(@iliensinc)在協議的 Discord 伺服器上寫道,“Hyperliquid Labs 知道有關所謂朝鮮地址活動的報告。”

“There has been no DPRK exploit – or any exploit for that matter – of Hyperliquid,” according to the post. “All user funds are accounted for.” 

貼文寫道:“北韓沒有利用過 Hyperliquid,也沒有任何與此相關的利用。” “所有用戶資金均已入帳。”

Hyperliquid’s Security Set-Up

Hyperliquid 的安全性設定

The validator set of the Hyperliquid blockchain secures the protocol’s EVM bridge, according to the protocol’s documentation. To trade on Hyperliquid, crypto users have to switch their wallet address to Arbitrum and deposit the stablecoin USDC into Hyperliquid’s bridging contract, which is less than two years old and has more than $2.1 billion at press time.

根據協議文檔,Hyperliquid 區塊鏈的驗證器集可保護協議的 EVM 橋接器。要在 Hyperliquid 上進行交易,加密貨幣用戶必須將錢包地址切換到 Arbitrum,並將穩定幣 USDC 存入 Hyperliquid 的橋接合約中,該合約不到兩年,截至發稿時價值超過 21 億美元。

Mudit Gupta, chief information security officer at Polygon Labs, said on X, “Hyperliquid bridge is controlled by two 3-of-4 hot wallet multisigs, managed by a single binary. I’d advise them to increase this threshold and eliminate the single point of failure instead of attacking security researchers.”

Polygon Labs 首席資訊安全長 Mudit Gupta 在 X 上表示:「Hyperliquid 橋由兩個 4 中 3 的熱錢包多重簽章控制,由單一二進位檔案管理。我建議他們提高這個門檻並消除單點故障,而不是攻擊安全研究人員。

Unchained was unable to confirm the details in the project’s documentation. 

Unchained 無法確認該專案文件中的詳細資訊。

Adrian Hetman, head of triaging at bug bounty platform Immunefi, told Unchained in emailed comments that, “In any case, relying primarily on a 3/4 validator setup as the main protection for their bridge is highly risky.” 

錯誤賞金平台 Immunefi 的分類負責人 Adrian Hetman 在電子郵件評論中告訴 Unchained,“無論如何,主要依靠 3/4 驗證器設置作為其橋樑的主要保護是非常危險的。”

North Korean hackers previously have targeted bridge smart contracts to steal funds, notably in incidents involving the Ronin and Harmony bridges.

北韓駭客先前曾針對橋樑智能合約竊取資金,特別是在涉及 Ronin 和 Harmony 橋樑的事件中。

Some commenters on social media remarked that Monahan was spreading “FUD” – an acronym that stands for “fear, uncertainty, and doubt” – while others suggested that she was seeking attention for herself. 

社交媒體上的一些評論者評論說,莫納漢正在傳播“FUD”——代表“恐懼、不確定性和懷疑”的縮寫——而其他人則認為她正在為自己尋求關注。

Monahan said she wouldn’t have aired the criticisms without first attempting to notify the Hyperliquid team. 

莫納漢表示,如果沒有先嘗試通知 Hyperliquid 團隊,她不會發表這些批評。

“If there was any chance of them listening to me, I wouldn’t have tweeted and especially not in that way,” she wrote in a Telegram group chat with over 4,400 members. 

「如果他們有機會聽我說話,我就不會發推文,尤其不會以這種方式,」她在擁有 4,400 多名會員的 Telegram 群聊中寫道。

“I would be sh-tting my pants right now,” Monahan wrote. 

「我現在就要尿褲子了,」莫納漢寫道。

Hyperliquid’s @iliensinc said in the Discord post someone reached out to the team with security concerns but communicated using insults and profanity. “Given the level of professionalism displayed, Labs conferred instead with trusted parties,” per @iliensinc’s Discord announcement. 

Hyperliquid 的 @iliensinc 在 Discord 帖子中表示,有人出於安全考慮聯繫了團隊,但在交流中使用了侮辱和髒話。根據 @iliensinc 的 Discord 公告,「鑑於所表現出的專業水平,實驗室轉而與值得信賴的各方進行協商」。

Hyperliquid

超流動性

新聞來源:unchainedcrypto.com

免責聲明:info@kdj.com

The information provided is not trading advice. kdj.com does not assume any responsibility for any investments made based on the information provided in this article. Cryptocurrencies are highly volatile and it is highly recommended that you invest with caution after thorough research!

If you believe that the content used on this website infringes your copyright, please contact us immediately (info@kdj.com) and we will delete it promptly.

2024年12月24日 其他文章發表於