Share this article
CertiK Ltd., a blockchain security auditing firm, suffered a security breach earlier today as yet unidentified hackers compromised its official X (formerly Twitter) account to distribute phishing links to its hundreds of thousands of followers.
The breach was confirmed by Revoke.cash, a smart contract tool that provides token approval for cross-chain security.
It looks like @CertiK‘s X account has been compromised and is sharing a link to a fake Revoke website. Uniswap is NOT compromised. pic.twitter.com/G5xw7PQR6n
— Revoke.cash (@RevokeCash) January 5, 2024
The infiltrated CertiK account posted tweets warning users of a fake vulnerability in the smart contract code for Uniswap V3, a prominent decentralized cryptocurrency exchange (DEX). It then directed users to a fraudulent website impersonating Revoke.cash.
In its statement on the breach, Revoke confirmed that Uniswap itself was not compromised. This incident raises questions surrounding CertiK’s own defenses and standard security practices. Just two days prior, the company published its 2023 hacking report, meant to highlight industry threats.
Independent crypto journalist Colin Wu (Wu Blockchain) also confirmed the breach, adding that the official CertiK Discord site was recently hacked and replaced with a fake Discord promoting phishing links. CertiK’s alerts account on X also confirmed that the main account was breached and warned users to avoid interacting with the compromised account.
While the motive behind the hack hasn’t been established, the coordinated effort indica
Go to Source to See Full Article
Author: Vince Dioquino
Tip BTC Newswire with Cryptocurrency
Donate Bitcoin to BTC Newswire
Donate Bitcoin Cash to BTC Newswire
Donate Ethereum to BTC Newswire
Donate Litecoin to BTC Newswire
Donate Monero to BTC Newswire
Donate ZCash to BTC Newswire
