FixFloat 遭重复黑客攻击，被盗 300 万美元； Tether 冻结被盗资金

FixFloat 加密货币交易所再次被威胁组织利用，该组织此前曾造成 2600 万美元的黑客攻击。周二早些时候，区块链安全公司发现了可疑活动，从 FixFloat 的以太坊热钱包中提取了 280 万美元。资金被转移到可疑地址并兑换成 ETH，然后发送到 eXch 交易所。 FixFloat 确认了此次攻击，并将其归因于第三方提供的服务中的漏洞。交易所向用户保证，该漏洞仅影响公司资金，不会损害用户资金。稳定币巨头 Tether 将 7 个从 FixFloat 接收资金的钱包地址列入黑名单，总计 28 万美元的 USDT。

FixedFloat Hacked Again: $3 Million Stolen, Tether Blacklists Addresses

FixFloat 再次遭到黑客攻击：300 万美元被盗，Tether 黑名单地址

In a disturbing twist of events, cryptocurrency exchange FixedFloat has been targeted once more by the same threat actors responsible for a previous hack in February that resulted in the theft of $26 million worth of Bitcoin and Ether. Security experts and blockchain analysts have been closely monitoring the exchange's activities, and multiple suspicious transactions were flagged early Tuesday, raising red flags.

令人不安的事件发生了，加密货币交易所 FixFloat 再次成为 2 月份黑客攻击的同一威胁攻击者的目标，这次黑客攻击导致价值 2600 万美元的比特币和以太币被盗。安全专家和区块链分析师一直在密切监视该交易所的活动，周二早些时候，多起可疑交易被标记，引发了危险信号。

Cyvers Alerts, a renowned blockchain security firm, reported the alarming withdrawal of a staggering $2.8 million from FixedFloat's hot wallet on the Ethereum blockchain. The funds were swiftly transferred to a suspicious address that engaged in a series of cryptocurrency swaps, converting FixedFloat's assets into ETH before funneling them into the eXch exchange.

著名的区块链安全公司 Cyvers Alerts 报告称，从以太坊区块链上的 FixFloat 热钱包中提取了惊人的 280 万美元。这些资金很快被转移到一个可疑地址，该地址进行了一系列加密货币互换，将 FixFloat 的资产转换为 ETH，然后将其汇入 eXch 交易所。

CertiK, another leading blockchain security provider, has estimated the total losses from the exploit at around $3 million. The company noted that FixedFloat's website was experiencing technical difficulties, indicating ongoing efforts to address the situation.

另一家领先的区块链安全提供商 CertiK 估计该漏洞造成的总损失约为 300 万美元。该公司指出，FixedFloat 的网站遇到技术困难，表明正在努力解决这一问题。

FixedFloat has since confirmed the attack, acknowledging that the perpetrators behind the February hack were once again involved. The exchange's statement highlighted its team's efforts to repel some of the attacks but expressed regret that the attackers had exploited a vulnerability in a third-party service that FixedFloat relies on.

此后，FixedFloat 确认了此次攻击，并承认二月份黑客攻击背后的肇事者再次参与其中。该交易所的声明强调了其团队为击退部分攻击所做的努力，但对攻击者利用了 FixFloat 所依赖的第三方服务中的漏洞表示遗憾。

Reassuringly, FixedFloat emphasized that the financial losses were limited to the company's own funds and did not affect user assets. An ongoing investigation is underway, but no further details have been released as of yet.

令人放心的是，FixedFloat强调，财务损失仅限于公司自有资金，不会影响用户资产。调查正在进行中，但目前尚未公布更多细节。

In response to the latest attack, Tether, the issuer of the widely used USDT stablecoin, has blacklisted seven wallet addresses that received a total of $280,000 from FixedFloat. PeckShield, a system vulnerability analysis and malware defense firm, identified these addresses and reported their involvement in the exploit.

为了应对最新的攻击，广泛使用的 USDT 稳定币的发行者 Tether 已将 7 个钱包地址列入黑名单，这些地址从 FixFloat 接收了总计 28 万美元的资金。 PeckShield 是一家系统漏洞分析和恶意软件防御公司，识别了这些地址并报告了它们参与了该漏洞利用。

FixedFloat's second breach within a short period raises concerns about the security of cryptocurrency exchanges. In February, the exchange suffered a $26 million loss in BTC and ETH, with the company stating that the attack was not perpetrated by its employees.

FixFloat 短时间内的第二次违规引发了人们对加密货币交易所安全性的担忧。 2 月份，该交易所的 BTC 和 ETH 损失达 2600 万美元，该公司表示此次攻击并非其员工所为。

The cryptocurrency industry has witnessed a surge in security incidents in recent weeks, with liquid staking protocol Prisma Finance falling victim to a $11.6 million exploit. The protocol's attacker has demanded a public apology and the identification of the development team as a means of restoring trust.

最近几周，加密货币行业的安全事件激增，流动质押协议 Prisma Finance 成为价值 1160 万美元漏洞的受害者。该协议的攻击者要求公开道歉并确认开发团队的身份，以此作为恢复信任的手段。

SlowMist, a blockchain security firm, has reported that the web3 ecosystem experienced security incidents resulting in losses of $139 million in March 2024 alone. Insider malfeasance and smart contract vulnerabilities have been identified as significant factors contributing to these incidents.

区块链安全公司 SlowMist 报告称，仅 2024 年 3 月，web3 生态系统就发生了安全事件，造成了 1.39 亿美元的损失。内部渎职和智能合约漏洞已被确定为导致这些事件的重要因素。

The repeated targeting of cryptocurrency exchanges and the escalating losses highlight the need for robust security measures and ongoing vigilance within the industry. As web3 and cryptocurrency adoption continues to grow, ensuring the safety of user funds and the integrity of the ecosystem becomes paramount.

加密货币交易所的反复攻击和不断升级的损失凸显了行业内采取强有力的安全措施和持续保持警惕的必要性。随着 web3 和加密货币的采用不断增长，确保用户资金的安全和生态系统的完整性变得至关重要。