• bitcoinBitcoin (BTC) $ 112,691.00
  • ethereumEthereum (ETH) $ 4,095.87
  • tetherTether (USDT) $ 1.00
  • bnbBNB (BNB) $ 1,205.39
  • xrpXRP (XRP) $ 2.50
  • solanaSolana (SOL) $ 203.02
  • usd-coinUSDC (USDC) $ 0.999847
  • staked-etherLido Staked Ether (STETH) $ 4,094.11
  • dogecoinDogecoin (DOGE) $ 0.203857
  • tronTRON (TRX) $ 0.317108
  • cardanoCardano (ADA) $ 0.695408
  • wrapped-stethWrapped stETH (WSTETH) $ 4,984.20
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 4,410.83
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 112,717.00
  • chainlinkChainlink (LINK) $ 19.01
  • figure-helocFigure Heloc (FIGR_HELOC) $ 0.991161
  • ethena-usdeEthena USDe (USDE) $ 0.999028
  • wrapped-eethWrapped eETH (WEETH) $ 4,424.04
  • stellarStellar (XLM) $ 0.336919
  • bitcoin-cashBitcoin Cash (BCH) $ 537.15
  • hyperliquidHyperliquid (HYPE) $ 39.01
  • suiSui (SUI) $ 2.81
  • avalanche-2Avalanche (AVAX) $ 22.64
  • wethWETH (WETH) $ 4,095.97
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 1.00
  • leo-tokenLEO Token (LEO) $ 9.63
  • usdsUSDS (USDS) $ 1.00
  • hedera-hashgraphHedera (HBAR) $ 0.188756
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 112,938.00
  • usdt0USDT0 (USDT0) $ 1.00
  • litecoinLitecoin (LTC) $ 97.32
  • mantleMantle (MNT) $ 1.96
  • shiba-inuShiba Inu (SHIB) $ 0.000011
  • whitebitWhiteBIT Coin (WBT) $ 42.87
  • the-open-networkToncoin (TON) $ 2.30
  • moneroMonero (XMR) $ 313.76
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.20
  • crypto-com-chainCronos (CRO) $ 0.162247
  • polkadotPolkadot (DOT) $ 3.23
  • daiDai (DAI) $ 0.997256
  • bittensorBittensor (TAO) $ 454.34
  • uniswapUniswap (UNI) $ 6.77
  • zcashZcash (ZEC) $ 244.98
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.143642
  • aaveAave (AAVE) $ 253.16
  • okbOKB (OKB) $ 179.45
  • bitget-tokenBitget Token (BGB) $ 4.83
  • memecoreMemeCore (M) $ 1.98
  • ethenaEthena (ENA) $ 0.441783
  • pepePepe (PEPE) $ 0.000007
  • nearNEAR Protocol (NEAR) $ 2.45
  • aster-2Aster (ASTER) $ 1.47
  • jito-staked-solJito Staked SOL (JITOSOL) $ 251.34
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • usd1-wlfiUSD1 (USD1) $ 0.999633
  • susdssUSDS (SUSDS) $ 1.07
  • paypal-usdPayPal USD (PYUSD) $ 0.999991
  • aptosAptos (APT) $ 3.64
  • ethereum-classicEthereum Classic (ETC) $ 16.85
  • c1usdCurrency One USD (C1USD) $ 0.999986
  • ondo-financeOndo (ONDO) $ 0.795996
  • binance-peg-wethBinance-Peg WETH (WETH) $ 4,087.44
  • falcon-financeFalcon USD (USDF) $ 0.995435
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 5.62
  • worldcoin-wldWorldcoin (WLD) $ 0.964612
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.201455
  • story-2Story (IP) $ 6.56
  • chainopera-aiChainOpera AI (COAI) $ 10.46
  • binance-staked-solBinance Staked SOL (BNSOL) $ 217.55
  • gatechain-tokenGate (GT) $ 16.13
  • htx-daoHTX DAO (HTX) $ 0.000002
  • internet-computerInternet Computer (ICP) $ 3.50
  • kucoin-sharesKuCoin (KCS) $ 14.33
  • arbitrumArbitrum (ARB) $ 0.341190
  • rocket-pool-ethRocket Pool ETH (RETH) $ 4,688.31
  • usdtbUSDtb (USDTB) $ 1.00
  • algorandAlgorand (ALGO) $ 0.203511
  • hash-2Provenance Blockchain (HASH) $ 0.035517
  • pi-networkPi Network (PI) $ 0.214927
  • bfusdBFUSD (BFUSD) $ 0.999929
  • vechainVeChain (VET) $ 0.019070
  • cosmosCosmos Hub (ATOM) $ 3.47
  • wbnbWrapped BNB (WBNB) $ 1,206.32
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 4,330.67
  • kaspaKaspa (KAS) $ 0.060497
  • tether-goldTether Gold (XAUT) $ 4,178.45
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 4,328.86
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.024468
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 38.87
  • skySky (SKY) $ 0.063536
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 4,447.42
  • render-tokenRender (RENDER) $ 2.83
  • flare-networksFlare (FLR) $ 0.019224
  • pump-funPump.fun (PUMP) $ 0.004058
  • sei-networkSei (SEI) $ 0.224438
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 112,978.00
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 4,347.66
  • pax-goldPAX Gold (PAXG) $ 4,182.56
  • bonkBonk (BONK) $ 0.000016
  • official-trumpOfficial Trump (TRUMP) $ 6.26
  • nexoNEXO (NEXO) $ 1.22
  • pancakeswap-tokenPancakeSwap (CAKE) $ 3.46
  • jupiter-exchange-solanaJupiter (JUP) $ 0.374916
  • filecoinFilecoin (FIL) $ 1.66
  • syrupusdcSyrup USDC (SYRUPUSDC) $ 1.13
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999263
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 112,678.00
  • immutable-xImmutable (IMX) $ 0.579953
  • spx6900SPX6900 (SPX) $ 1.19
  • xdce-crowd-saleXDC Network (XDC) $ 0.061277
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.997378
  • morphoMorpho (MORPHO) $ 1.98
  • mantle-staked-etherMantle Staked Ether (METH) $ 4,414.18
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 232.81
  • doublezeroDoubleZero (2Z) $ 0.276397
  • celestiaCelestia (TIA) $ 1.15
  • injective-protocolInjective (INJ) $ 9.49
  • solmevSolMev (SN116) $ 2,398.72
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 112,802.00
  • clbtcclBTC (CLBTC) $ 113,426.00
  • fasttokenFasttoken (FTN) $ 2.01
  • lido-daoLido DAO (LDO) $ 0.970409
  • optimismOptimism (OP) $ 0.481971
  • msolMarinade Staked SOL (MSOL) $ 269.65
  • blockstackStacks (STX) $ 0.468801
  • plasmaPlasma (XPL) $ 0.463026
  • ripple-usdRipple USD (RLUSD) $ 1.00
  • curve-dao-tokenCurve DAO (CRV) $ 0.590326
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.312843
  • aerodrome-financeAerodrome Finance (AERO) $ 0.883138
  • ousgOUSG (OUSG) $ 112.93
  • cgeth-hashkey-cloudcgETH Hashkey Cloud (CGETH.HASH) $ 3,895.34
  • global-dollarGlobal Dollar (USDG) $ 0.999965
  • sonic-3Sonic (S) $ 0.199928
  • the-graphThe Graph (GRT) $ 0.069692
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 4,110.04
  • havvenSynthetix (SNX) $ 2.09
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 10.85
  • flokiFLOKI (FLOKI) $ 0.000074
  • pyth-networkPyth Network (PYTH) $ 0.122699
  • usdx-money-usdxStables Labs USDX (USDX) $ 0.999593
  • saros-financeSaros (SAROS) $ 0.259430
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.09
  • tezosTezos (XTZ) $ 0.627697
  • kaiaKaia (KAIA) $ 0.113327
  • tbtctBTC (TBTC) $ 112,593.00
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 4,096.42
  • ether-fiEther.fi (ETHFI) $ 1.23
  • stader-ethxStader ETHx (ETHX) $ 4,391.71
  • gtethGTETH (GTETH) $ 4,115.72
  • newton-projectAB (AB) $ 0.007586
  • iotaIOTA (IOTA) $ 0.150620
  • aethirAethir (ATH) $ 0.042678
  • myx-financeMYX Finance (MYX) $ 3.20
  • pendlePendle (PENDLE) $ 3.57
  • conflux-tokenConflux (CFX) $ 0.116598
  • usdaiUSDai (USDAI) $ 1.03
  • beldexBeldex (BDX) $ 0.078976
  • trust-wallet-tokenTrust Wallet (TWT) $ 1.41
  • rna-2RNA (SN117) $ 4,708.96
  • dogwifcoindogwifhat (WIF) $ 0.577100
  • theta-tokenTheta Network (THETA) $ 0.570146
  • dashDash (DASH) $ 45.16
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 4,527.24
  • ethereum-name-serviceEthereum Name Service (ENS) $ 16.86
  • galaGALA (GALA) $ 0.011957
  • the-sandboxThe Sandbox (SAND) $ 0.224732
  • swethSwell Ethereum (SWETH) $ 4,508.13
  • usual-usdUsual USD (USD0) $ 0.998400
  • starknetStarknet (STRK) $ 0.126752
  • mantle-restaked-ethMantle Restaked ETH (CMETH) $ 4,403.00
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.817729
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 112,956.00
  • raydiumRaydium (RAY) $ 1.99
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.203534
  • jasmycoinJasmyCoin (JASMY) $ 0.010703
  • decentralandDecentraland (MANA) $ 0.269265
  • bittorrentBitTorrent (BTT) $ 0.00000052
  • swissborgSwissBorg (BORG) $ 0.523449
  • mantle-bridged-usdt-mantleMantle Bridged USDT (Mantle) (USDT) $ 0.993026
  • eigenlayerEigenCloud (prev. EigenLayer) (EIGEN) $ 1.31
  • vaultaVaulta (A) $ 0.313426
  • astherus-staked-bnbAster Staked BNB (ASBNB) $ 1,274.31
  • syrupMaple Finance (SYRUP) $ 0.441896
  • true-usdTrueUSD (TUSD) $ 0.999746
  • arbitrum-bridged-wrapped-eethArbitrum Bridged Wrapped eETH (Arbitrum) (WEETH) $ 4,419.53
  • usddUSDD (USDD) $ 1.00
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.10
  • flowFlow (FLOW) $ 0.297972
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999866
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999900
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 4,097.40
  • sun-tokenSun Token (SUN) $ 0.024115
  • zero-gravity0G (0G) $ 2.16
  • ai-companionsAI Companions (AIC) $ 0.459161
  • bitcoin-svBitcoin SV (BSV) $ 22.91
  • jito-governance-tokenJito (JTO) $ 1.16
  • polygon-pos-bridged-weth-polygon-posPolygon PoS Bridged WETH (Polygon POS) (WETH) $ 4,097.87
  • frax-etherFrax Ether (FRXETH) $ 4,057.57
  • zebec-networkZebec Network (ZBCN) $ 0.004564
Bitcoin

$50 Million Radiant Capital Hack Traced to North Korean Cybercriminals

By admin
0 59

$50 Million Radiant Capital Hack Traced to North Korean Cybercriminals

On October 16, 2024, Radiant Capital, a decentralized cross-chain lending protocol built on LayerZero, was the victim of a highly sophisticated cyberattack that resulted in a staggering $50 million loss.

The attack has since been linked to North Korean hackers, marking another alarming chapter in the growing wave of cybercrime targeting decentralized finance (DeFi).

Report Links North Korean Actors to Radiant Capital Incident

A report from OneKey, a Coinbase-backed crypto hardware wallet manufacturer, attributed the attack to North Korean hackers. The report extends from a recent medium post shared by Radiant Capital, which provided an incident update on the October 16 attack.

Reportedly, Mandiant, a leading cybersecurity firm, further linked the breach to UNC4736, a DPRK-aligned group also known as AppleJeus or Citrine Sleet. This group operates under the Reconnaissance General Bureau (RGB), North Korea’s primary intelligence agency.

Mandiant’s investigation revealed that the attackers meticulously planned their operation. They staged malicious smart contracts across multiple blockchain networks, including Arbitrum, Binance Smart Chain, Base, and Ethereum. These efforts reflect the advanced capabilities of DPRK-backed threat actors in targeting the DeFi sector.

The breach began with a calculated phishing attack on September 11, 2024. A Radiant Capital developer received a Telegram message from an individual impersonating a trusted contractor. The message included a zip file purportedly containing a smart contract audit report. This file, “Penpie_Hacking_Analysis_Report.zip,” was laced with malware known as INLETDRIFT, a macOS backdoor that facilitated unauthorized access to Radiant’s systems.

When the developer opened the file, it appeared to contain a legitimate PDF. However, the malware silently installed itself, establishing a backdoor connection to a malicious domain at atokyonews[.]com. This allowed the attackers to spread the malware further among Radiant’s team members, gaining deeper access to sensitive systems.

The hackers’ strategy culminated in a man-in-the-middle (MITM) attack. By exploiting compromised devices, they intercepted and manipulated transaction requests within Radiant’s Gnosis Safe Multisig wallets. While transactions appeared legitimate to developers, the malware covertly altered them to execute a transfer Ownership call, seizing control of Radiant’s lending pool contracts.

Execution of the Heist, Industry Implications, and Lessons Learned

Despite Radiant’s adherence to best practices, such as using hardware wallets, transaction simulations, and verification tools, the attackers’ methods bypassed all defenses. Within minutes of securing ownership, the hackers drained funds from Radiant’s lending pools, leaving the platform and its users reeling.

The Radiant Capital hack serves as a stark warning to the DeFi industry. Even projects adhering to rigorous security standards can fall prey to sophisticated threat actors. The incident highlighted critical vulnerabilities, including:

  • Phishing Risks: The attack began with a convincing impersonation scheme, emphasizing the need for heightened vigilance against unsolicited file sharing.
  • Blind Signing: While essential, hardware wallets often display only basic transaction details, making it difficult for users to detect malicious modifications. Improved hardware-level solutions are necessary to decode and validate transaction payloads.
  • Front-End Security: The reliance on front-end interfaces for transaction verification proved inadequate. Spoofed interfaces enabled hackers to manipulate transaction data undetected.
  • Governance Weaknesses: The absence of mechanisms to revoke ownership transfers left Radiant’s contracts vulnerable. Implementing time locks or requiring delayed fund transfers could provide critical reaction time in future incidents.

In response to the breach, Radiant Capital has engaged leading cybersecurity firms, including Mandiant, zeroShadow, and Hypernative. These firms assist in the investigation and asset recovery. The Radiant DAO is also collaborating with US law enforcement to trace and freeze stolen funds.

In the Medium post, Radiant also reaffirmed its commitment to sharing lessons learned and enhancing security across the DeFi industry. The DAO emphasized the importance of adopting strong governance frameworks, strengthening device-level security, and moving away from risky practices like blind signing.

“Looks like things could have stopped at step 1,” one user on X commented.

The Radiant Capital incident aligns with a recent report, which indicated how North Korean hackers continue to shift tactics. As cybercriminals grow more sophisticated, the industry must adapt by prioritizing transparency, strong security measures, and collaborative efforts to combat such attacks.

Source

admin 14013 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.