SlowMist Cosmos Update on Venus Security Incident: Compromised Whale Account Targeted with a Spear Phishing Attack, Related Wallet Extension Replaced

BlockBeats News, September 2nd, SlowMist Cosmos updated the Venus security incident on the X platform as follows: In this whale theft incident, both the Venus protocol and the front end should be fine. Currently, SlowMist's joint partner analysis tends to believe that the whale was targeted in a pinpoint attack. Although the whale used a hardware wallet, the relevant wallet extension on the computer (used in combination with the hardware wallet) was replaced. When the user issued a normal redeemUnderlying operation, it was replaced with an updateDelegate operation, ultimately resulting in the theft of assets in their Venus.

The hacker targeted the funds of this whale through a pinpoint attack. The Gas came from privacy token Monero XMR exchange, and other related funds trace back to eXch, which is the previously sanctioned dark web trading platform and also a platform favored by North Korean hackers in the past.