CryptoHack

In a world where crypto walks a fine line between privacy protection and technological abuse, a dramatic twist has shaken the story of Tornado Cash. Its co-founder Roman Storm has become the center of attention after an anonymous crypto hacker sent a 10 ETH “donation”—just as Storm faces serious charges for allegedly laundering money through the controversial privacy protocol.
But instead of quietly accepting the funds, Storm made a bold, public move: he rejected the money—and reignited a debate on morality, accountability, and the future of decentralized finance (DeFi).

💸 Hacker’s “Gift”: An Ethical Trap in Real Time
It all began with an attack on Cork Protocol, where a hacker stole over 4,500 ETH (around $11 million) and anonymized the funds through Tornado Cash. Shortly after, 10 ETH landed in Roman Storm’s legal defense fund—apparently sent by the same attacker.
With Storm currently facing U.S. charges for money laundering and sanction violations, accepting such funds could have been a fatal mistake—legally and publicly.
But Storm didn’t hesitate. He took to X (formerly Twitter) and declared he would reject the money and return it directly to the Cork Protocol team, the victims of the hack.

⚖️ A Strong Statement Beyond Legal Defense
Storm’s move is more than a smart legal play. It’s a clear ethical message:
🔹 He rejected tainted funds, even though he needs them for his defense.

🔹 He preserved his credibility while under intense legal scrutiny.

🔹 He condemned the misuse of Tornado Cash, proving that developers of decentralized tools care about their impact.

🌐 Privacy vs. Law: DeFi’s Ongoing Dilemma
Storm’s case is a textbook example of the deep conflict dividing the crypto world:
🔹 Should developers be held responsible for how their code is used?

🔹 Can privacy be a crime when it also shields bad actors?

🔹 How can regulators protect people without killing innovation?
Tornado Cash was created to offer financial privacy—not to launder stolen crypto. But criminals quickly found ways to exploit it. And that brought sanctions, charges, and arrests.

🧭 What Does It Mean for the Future of Blockchain?
Storm’s choice may set a precedent. It sends a clear message: ethics matter, even in a decentralized world. Crypto isn’t just about code—it’s about trust.
If DeFi wants to survive and thrive, it must be built on transparency, responsibility, and moral clarity. Storm’s action may help reinforce those pillars.

📌 Bottom Line: Code Isn’t Enough – It’s About Trust
Roman Storm rejected money from a hacker—and in doing so, wrote one of the most pivotal chapters in DeFi history. This wasn’t just about ethics or courtroom strategy. It was a signal that even in decentralized systems, there are lines that must not be crossed.
His decision could impact not only the outcome of his trial—but also the future of the entire crypto space.

#TornadoCash , #defi , #hackers , #CryptoHack , #CryptoNews

Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“

ResupplyFi lost $5.59M in a crypto hack on June 26, 2025.
Attacker manipulated cvcrvUSD exchange rate via contract donations.Low-liquidity markets enabled theft with minimal collateral.DeFi platforms urged to enhance smart contract security.Industry calls for better oracles and liquidity management.
$5.59M Stolen in ResupplyFi Attack
A crypto hack targeting ResupplyFi resulted in a loss of approximately $5.59 million. The breach, detected on June 26, 2025, involved suspicious transactions that exploited vulnerabilities in the platform’s smart contracts. Attackers manipulated the exchange rate of cvcrvUSD, leading to the theft of a significant amount of reUSD tokens.
The attack centered on the cvcrvUSD Controller contract. By making strategic donations, the attacker artificially inflated the token’s share price. This allowed them to borrow a large volume of reUSD tokens with minimal collateral, draining substantial assets from the protocol.
ResupplyFi, a decentralized finance platform, relies on low-liquidity markets for certain token pairs. The attacker exploited this, using just two crvUSD tokens to borrow millions in reUSD. Such vulnerabilities highlight ongoing risks in DeFi ecosystems, where low-liquidity pools can be prime targets for manipulation.

Security systems flagged the suspicious activity early, but the attacker’s swift execution caused significant damage before interventions could be implemented. The incident underscores the need for robust safeguards in decentralized lending protocols.
DeFi Security Under Scrutiny
The ResupplyFi crypto hack has reignited discussions about DeFi vulnerabilities. Exchange rate manipulation in low-liquidity markets remains a persistent threat. Attackers exploit empty or thinly traded pools to distort prices, enabling large-scale theft with minimal initial investment.
This incident follows a pattern seen in other DeFi exploits. Similar attacks have targeted lending protocols by inflating share prices through strategic donations or flash loans. The ResupplyFi breach involved a donation to the cvcrvUSD Controller, which skewed the token’s value and allowed the attacker to siphon off funds.
Decentralized finance platforms face increasing pressure to enhance security measures. Smart contract audits and real-time monitoring are critical to detecting and preventing such exploits. The ResupplyFi hack serves as a reminder of the importance of rigorous validation of mathematical functions in smart contracts.
Industry experts emphasize the need for improved oracle mechanisms to ensure accurate pricing data. Protocols like Chainlink provide decentralized price feeds to mitigate manipulation risks, but adoption remains inconsistent across DeFi platforms. Enhanced liquidity management and stricter access controls could also reduce vulnerabilities.
The ResupplyFi incident has prompted calls for greater transparency in DeFi operations. Platforms are urged to disclose security measures and undergo regular third-party audits. Strengthening these defenses is essential to maintaining user trust in decentralized finance.
The broader crypto community is now analyzing the attack’s fallout. Blockchain security firm SlowMist reported the breach through its MistEye monitoring system, highlighting the stolen funds’ movement. Such tools are vital for tracking illicit transactions and aiding recovery efforts.
ResupplyFi has not yet announced specific recovery plans or user compensation. The platform’s team is likely investigating the breach to prevent future incidents. Meanwhile, affected users await updates on potential restitution measures.
The hack’s scale underscores the growing sophistication of cybercriminals targeting DeFi. As the sector expands, so does the need for advanced security frameworks. Platforms must prioritize resilience against manipulation tactics to protect user funds.
This breach adds to a string of high-profile DeFi attacks in 2025, raising concerns about the sector’s maturity. Investors and developers alike are calling for standardized security protocols to safeguard the ecosystem. For more insights into DeFi security, resources like Cointelegraph and The Block offer in-depth coverage of blockchain vulnerabilities and solutions.

#CryptoHack #ResupplyFi #DeFiSecurity #BlockchainVulnerability #SmartContractExploit

#CryptoHack
Binance founder Changpeng Zhao speaks out after Cointelegraph and CoinMarketCap hacks, warning community.
In recent days, all the talk has been about the archive of 16 billion passwords made public in one of the largest archives available to cybercriminals today.
The crypto sector is also on high alert after two major sites, CoinMarketCap and Cointelegraph , were hacked.
In response to these incidents, Binance founder Changpeng Zhao sounded the alarm. He urged the crypto community to be careful when linking their wallets.
Changpeng Zhao Warns Against Rising Cryptocurrency Attacks
Following the attacks that hit CoinMarketCap and Cointelegraph, Binance founder Changpeng Zhao stepped in to warn users of the growing number of similar incidents in the crypto world .
CZ urged crypto people to be cautious whenever they allow wallet linking. In his post he wrote:
Two days ago CMC, now CT. Hackers are targeting news sites. Be careful when authorizing wallet connection.

Not only CZ, but also Web3 security company CertiK reiterated the need to take countermeasures to prevent these attacks.
Today, attackers are moving from exploiting vulnerabilities in smart contracts to targeting users through social engineering schemes . This is the psychological manipulation technique that tricks the victim into believing they are dealing with a legitimate site when in fact they are interacting with fake interfaces capable of stealing data and capital.
Last May, Coinbase also suffered a security breach, during which hackers stole sensitive information from key customers.
According to CertiK, the number of crypto attacks carried out after breaching wallet data is growing . This is a change in strategy by cybercriminals that has led to large losses already in the first half of 2025. Thefts this year amount to $2.1 billion, mostly due to wallet breaches and phishing attacks.

CertiK co-founder Ronghui Gu said :
Attackers always target the weakest link… Previously, it was smart contracts or blockchain code, but now hackers believe that weaknesses may stem more from human behavior than code.
What Happened to CoinMarketCap and Cointelegraph?
Changpeng Zhao's warning comes after CoinMarketCap and Cointelegraph admitted to having suffered major cyber breaches .
The Hack Against CoinMarketCap
According to CoinMarketCap, the attacker committed a security breach , in which hackers exploited a vulnerability in the platform.
The compromised site displayed a fake pop-up notification that attempted to trick users into verifying their crypto wallets , but CoinMarketCap promptly removed the code.
In his post, Changpeng Zhao revealed that CoinMarketCap has reported 39 victims, who have suffered a total loss of $18,570 based on the first on-chain analysis. The platform has pledged to cover all losses.
The attack against Cointelegraph is sophisticated and sneaky
Crypto news outlet Cointelegraph has confirmed that its site was hacked via a front-end exploit. The manipulated site promoted a fake token airdrop and aimed directly at users’ capital.
The media outlet identified the presence of a “fake pop-up” and reported that it is working to find a solution.
The platform warned users with a message: “Do not click on these pop-ups, do not connect your wallets and do not enter any personal information.”
In practice, the fake pop-up notification promoted a now common scam that promised participation in a non-existent giveaway .
The usual message informed users that they had been selected to receive tokens as part of the platform's 'fair launch' initiative.
It displayed a fake token price, promising users around $5,500 in tokens if they linked their wallet, and even went as far as to fake CertiK audit approval. The attacker used a similar tactic to the one used in the CoinMarketCap attack that occurred just two days earlier.

FOLLOW BeMaster BuySmart 🚀 TO FIND OUT MORE $$$$$ 🤩 BE MASTER BUY SMART 🤩

Earlier today, CMC’s website was compromised.
A malicious pop-up asked users to “Verify Wallet” — it was a trap to steal your seed phrase.
Did you see it?
👉 Do NOT enter your keys.
CMC UPDATE:
“We’ve removed the malicious code and are beefing up security.”

But here's the truth 👇
👉 Always use trusted wallets
👉 Never share your seed phrase
👉 Move funds if you ever interacted with suspicious prompts
Reminder: Not your keys = Not your crypto.
What wallet do YOU trust for safety? Comment below. 👇

#CoinMarketCap #CMC #CryptoNews #CryptoHack $BTC $SEI $MAGIC

18 червня 2025 року хакерська група Gonjeshke Darande, відома як Predatory Sparrow, оголосила про злам найбільшої іранської криптобіржі Nobitex, викравши активи на $81,7 млн. Наступного дня хакери виконали свою погрозу, опублікувавши вихідний код платформи та внутрішні дані. Це стало однією з наймасштабніших кібератак в історії Ірану, спрямованих проти фінансової інфраструктури країни.
Група, яку пов’язують з ізраїльською розвідкою, звинуватила Nobitex у сприянні обходу санкцій та фінансуванні тероризму через криптовалютні операції. Хакери використали провокаційні адреси-гаманці, зокрема з написами на кшталт «Fack IRGC Terrorists», для виведення коштів, частину яких, за даними Elliptic, було спалено, щоб надіслати політичний меседж.
Nobitex підтвердила атаку, заявивши, що холодні гаманці залишилися недоторканими, і пообіцяла компенсувати збитки через страховий фонд. Однак витік коду загрожує довірі до платформи та безпеці користувачів. Цей інцидент підкреслює вразливість криптобірж у кібервійнах.
Стежте за новинами криптосвіту та підпишіться на #MiningUpdates , щоб не пропустити важливі оновлення!
#CryptoHack #Nobitex #cyberattack #BlockchainSecurity #IranCrypto #CryptoNews

Nobitex hacked for $81M by Israel-linked group Predatory Sparrow.
Attack used vanity addresses to drain Tron, EVM wallets.Nobitex vows to compensate users via insurance fund.Hack tied to Israel-Iran tensions, targeting sanctions evasion.Stolen funds unmoved, signaling political motive.
Nobitex Hacked: Massive Crypto Theft Shakes Iran
Iran’s largest cryptocurrency exchange, Nobitex, suffered a security breach, losing over $81 million in digital assets. The attack targeted hot wallets across Tron and Ethereum Virtual Machine (EVM)-compatible blockchains. Unauthorized access drained funds, including Bitcoin, Dogecoin, and Tether’s USDT.
The breach occurred on June 18, 2025, with attackers exploiting vulnerabilities in access controls. Nobitex confirmed the incident, stating that cold storage funds remain secure. The exchange suspended its website and app for a full investigation.
Israel-Linked Hackers Claim Responsibility
The pro-Israel hacking group Gonjeshke Darande, or Predatory Sparrow, claimed responsibility for the attack. They accused Nobitex of facilitating Iran’s sanctions evasion and financing terrorism. The group used vanity addresses, including one labeled “TKFu ckiRGCTerroristsNoBiTEXy2r7mNX,” to transfer stolen funds.
The hackers threatened to release Nobitex’s source code and internal data within 24 hours. They warned users to withdraw assets, claiming any remaining funds could be at risk. The attack follows a similar cyberstrike on Iran’s state-owned Bank Sepah, also attributed to the group.
The stolen funds, valued at over $81 million, remain unmoved in burner addresses. Security experts noted the use of politically charged wallet names, suggesting the hack was a deliberate political statement rather than a financial theft.
Nobitex Vows to Compensate Users
Nobitex accepted full responsibility for the breach and pledged to cover losses through its insurance fund and reserves. The exchange emphasized that only a portion of hot wallet assets was affected. User funds in cold storage are reportedly safe.
The platform is working with Iran’s Cyber Police (FATA) to recover the stolen assets. Nobitex has not disclosed specific details about the attack’s scope or the assets lost. The investigation continues as the exchange aims to restore operations.
The hack adds to a string of crypto breaches in 2025, with over $2.1 billion stolen industry-wide, according to blockchain security firm CertiK. Wallet compromises and key mismanagement remain leading causes of such losses. CertiK Report on 2025 Crypto Hacks
Geopolitical Tensions Fuel Cyber Warfare
The attack coincides with heightened Israel-Iran tensions, marked by missile strikes and cyberattacks. On June 13, Israel launched airstrikes on Iranian targets, prompting retaliatory missile fire. The Nobitex hack reflects a broader digital conflict targeting Iran’s financial infrastructure

Gonjeshke Darande has a history of attacking Iranian systems, including steel mills and gas stations. The group’s actions align with escalating regional conflicts, raising concerns about the security of crypto exchanges in sanctioned nations. The breach has sparked discussions about the role of cryptocurrency in bypassing sanctions. Nobitex, with over 7 million users, has been linked to Iran’s efforts to acquire foreign currencies. The hack could disrupt these operations, dealing a strategic blow to the regime.
Security Flaws Exposed in Hack
The exploit stemmed from failures in Nobitex’s access controls, allowing hackers to infiltrate internal systems. Vanity addresses used in the attack were designed to send a message, with funds transferred to wallets lacking private keys. This suggests the hackers prioritized disruption over profit.
The breach reduced Nobitex’s wallet holdings by over 90%, from $1.8 billion to $96 million, according to blockchain analytics platform Arkham. The exchange faces a credibility crisis as users await updates on asset safety and platform restoration.
Nobitex’s response includes a commitment to enhance security measures. The exchange urged users to remain vigilant amid ongoing investigations. The incident underscores the vulnerabilities of hot wallets and the growing threat of politically motivated cyberattacks in the crypto space.
#Nobitex #CryptoHack #IranIsraelConflict #PredatorySparrow #CyberWarfare

In what is being called the biggest digital heist in history," cryptocurrency exchange Bybit has suffered a massive $1.5 billion hack. The attacker targeted an Ethereum $ETH wallet, transferring the funds to an unknown address. #Bybit the second-largest crypto exchange by trading volume, has appealed to the "brightest minds in cybersecurity and crypto analytics" to help recover the stolen funds, offering a 10% reward (up to $140 million) for successful recovery.
Key Details of the Hack:
- Targeted Asset: Ethereum (ETH), the second-largest cryptocurrency by market cap.
- Method: The hacker exploited security controls during a routine transfer of Ethereum from an offline "cold wallet" to a "warm wallet" used for daily operations.
- Impact: Bybit has assured users that their funds are safe and that the exchange remains solvent, with $20 billion in customer assets to cover losses. CEO Ben Zhou confirmed that all affected users will be refunded, even if the stolen funds are not recovered.
- Market Reaction: Ethereum’s price dropped by 4% after the news but has since nearly recovered to pre-hack levels.
Implications for the Crypto Industry:
1. Trust and Confidence: This hack is a major setback for the crypto industry, which has been working to rebuild trust after previous breaches and collapses. While Bybit’s quick response and commitment to refunds are positive, the incident highlights the vulnerabilities of even the largest exchanges.
2. Regulatory Pressure: The hack could lead to stricter regulations for crypto exchanges worldwide. Governments and regulators may push for more robust security standards, especially in the U.S., where former President #DonaldTrump has promised to make the country the "crypto capital of the planet."
3. Market Volatility: Large-scale hacks often trigger panic selling and increased withdrawal requests. Bybit reported over 350,000 withdrawal requests following the breach, which could strain the exchange’s liquidity and processing capabilities.
4. Cybersecurity Arms Race: The attack underscores the need for stronger security measures in the crypto space. Bybit has pledged to "fundamentally transform" its security infrastructure, setting a new standard for other exchanges to follow.
5. Geopolitical Concerns: Some reports suggest that North Korean state-backed hackers, such as the #LazarusGroup may be behind the attack. This group has been linked to previous high-profile crypto heists, including the $615 million Ronin Network hack in 2022. If confirmed, this could escalate geopolitical tensions and lead to increased international efforts to combat crypto-related cybercrime.
Bybit’s Response:
Bybit has taken several steps to address the situation:
- User Reassurance: The exchange has emphasized its financial stability and commitment to refunding affected users.
- Collaboration with Experts: Bybit is seeking help from top cybersecurity and crypto analytics professionals to trace and recover the stolen funds.
- Security Overhaul: The company has pledged to revamp its security infrastructure to prevent future breaches.
Key Takeaways for the Crypto Community:
- Stay Vigilant: Users should remain cautious and consider diversifying their holdings across multiple wallets and exchanges.
- Advocate for Stronger Security: This incident highlights the importance of robust security measures, such as multi-signature wallets and advanced encryption.
- Monitor Regulatory Developments: The hack could accelerate regulatory efforts, potentially impacting how exchanges operate globally.
#CryptoHack #Ethereum #Cybersecurity #CryptoNewss ews #Blockchain #CryptoRegulation #DigitalAssets #CryptoCommunity #Binance #Liquidity #CryptoSecurity #DeFi #CryptoRecovery #NorthKoreaHackers
Conclusion:
The Bybit hack is a stark reminder of the risks in the crypto industry. While the exchange’s swift response and commitment to user protection are commendable, the incident underscores the urgent need for enhanced security measures and regulatory oversight. As the crypto world continues to evolve, collaboration between exchanges, cybersecurity experts, and regulators will be crucial to safeguarding the future of digital assets.
Stay informed, stay secure, and let’s work together to build a safer crypto ecosystem.
Disclaimer: This article is for informational purposes only and does not constitute financial or investment advice. Always conduct your own research before making any financial decisions.

The crypto world was rocked in May 2025 as hackers made off with a staggering $244.1 million across 20 major incidents. 😨 While that number is alarming, it's actually 39% lower than the $400M+ lost in April. Still, May proved that Web3 remains a high-stakes battlefield. ⚔️💰

---

💥 The Cetus Protocol Exploit – $223M Vanishes!

The biggest blow came from the Cetus Protocol, a decentralized exchange (DEX) running on the Sui blockchain. 🚀 Hackers exploited a vulnerability in Cetus’ smart contract overflow checks, draining $223 million in mere moments. 🧨🔓

---

🛡️ The Fightback: $157M Recovered!

But all hope wasn’t lost. Thanks to swift action by Sui validators and the Cetus team, about $157 million of the stolen funds were frozen and clawed back—an impressive 71% recovery rate! 🧊💼

With community support, $162M worth of these recovered assets will be transferred to a multi-signature wallet jointly managed by Cetus, the Sui Foundation, and blockchain security firm OtterSec. 🗳️🔐

This wallet will oversee the safe reimbursement of affected users and help restore Cetus’ operations. 🙌💸

---

🎯 Bounty Offered: Will the Hacker Take It?

In a bid to recover the rest, Cetus has offered the attacker a $6 million white-hat bounty 💰🕵️‍♂️—a common tactic in crypto circles to encourage the safe return of stolen assets. So far, there’s been no response.

---

📉 May in Perspective

Despite the drama, the total amount hacked in May 2025 is significantly less than previous months, a sign that DeFi platforms may be slowly learning from past attacks. 📚✅

---

🔐 Final Thoughts

The Cetus hack is a wake-up call—but also a testament to how fast and united a community can respond. 👥⚡ With tighter security, better audits, and community-driven protocols, the future of DeFi can still be bright. 🌞📈 #CryptoNews #DeFiSecurity #BlockchainUpdates #CryptoHack #SuiNetwork $SUI