DeviantArt releases software to detect infringement of artwork on NFT marketplaces... because the NFT marketplaces won't

August 6, 2021

DeviantArt releases software to detect infringement of artwork on NFT marketplaces... because the NFT marketplaces won't

DeviantArt releases software to automatically scan the NFT platform OpenSea for NFTs that use stolen artwork from DeviantArt. While it's awesome that DeviantArt created this tool to help the artists on their platform, it underscores the hands-off, look-the-other-way approach OpenSea has taken to the rampant art theft on their platform. Even reports of blatant copies of artwork have been rejected with no action, and artists are forced to report each infringement of their work individually even if there are many.

"DeviantArt Protect: Helping Safeguard Your Art", DeviantArt
"DeviantArt Is Now Using AI to Spot People Selling Stolen Art as NFTs", Vice

August 4, 2021

Uulala and related individuals settle with SEC for a total of $543,000 in fines

(attribution)

The company Uulala, which aimed to provide underbanked individuals with opportunities to build credit, settled with the SEC over charges that they ran an unregistered ICO that raised $9 million. Although they claimed to be using a "proprietary micro-credit algorithm" and proprietary database technology, the SEC said their algorithm was still under development and that they were using database technology belonging to another company. As a part of the settlement, Uulala disabled all $UULA tokens and asked crypto exchanges to disallow trading.

August 3, 2021

Flash loan exploit empties $25 million from Popsicle Finance

(attribution)

Popsicle Finance, a DeFi platform, lost $25 million to a bug exploited with flash loans. The organization later reimbursed users who lost money to the exploit.

"DeFi platform Popsicle Finance suffers $20 million exploit", The Block
"Popsicle Finance to Repay Victims of $25M Attack", CryptoBriefing

July 31, 2021

Russian Ponzi scheme collapses after defrauding investors of around $95 million

Finiko, a Russian operation that turned out to be a Ponzi scheme, collapsed in July 2021 after defrauding approximately $95 million from people. Investors, facing difficult economic conditions in Russia, were promised they could see returns of up to 30% a month.

"The Biggest Threat to Trust in Cryptocurrency: Rug Pulls Put 2021 Scam Revenue Close to All-time Highs", Chainalysis
"Court Extends Detention of Finiko Pyramid Founder Doronin and His Right-Hand Man", Bitcoin.com
"Founder of Alleged $95M Ponzi Nabbed in Russia, 3 More Sought", Coindesk

July 23, 2021

An attacker steals coins by giving out coins of their own

An attacker giving out free UniH tokens was able to exploit a bug in a non-standard token contract and steal RUNE tokens from unsuspecting victims. By baiting people into selling their new UniH tokens, the attacker was able to execute malicious code that transferred any RUNE tokens also in their wallet. This was the fourth exploit pertaining to the Thorchain platform in the month of July.

"Creative attacker steals $76,000 in RUNE by giving out free tokens", The Block

July 20, 2021

Norton Antivirus now sneakily installs a crypto miner on your computer so you can mine crypto (and give some to them)

(attribution)

Norton, the makers of the popular Norton Antivirus software, started installing "Norton Crypto" on customers' machines when they install the popular Norton 360 antivirus and malware protection software. It mines Ethereum, skimming 15% for Norton of course. They don't seem to mention that the energy costs incurred by crypto mining on a personal machine are likely to exceed any actual mining proceeds.

Tweet by Cory Doctorow
FAQ: Norton Crypto
"Norton 360 Now Comes With a Cryptominer", Krebs on Security

July 16, 2021

Coinbase said its USD Coin would be fully backed 1-1 with USD. It isn't.

(attribution)

Coinbase's USD Coin claimed that there was $1 "in a bank account" to back it, meaning that if everyone hypothetically tried to redeem their USDC at once at any given time, it would be possible. A July disclosure showed that this wasn't true, and that the coin was actually backed by commercial paper, corporate bonds, and other assets. Bloomberg speculated that the FTC might investigate the claim as a possible "unfair or deceptive act or practice".

"Coinbase Vowed Token’s All-Cash Backing; That’s Not True", Bloomberg

June 23, 2021

StableMagnet makes off with $27 million in rug pull

StableMagnet creators rugpulled about $27 million from users by swapping out linked library code. Users who had StableMagnet linked to their cryptocurrency wallets saw their wallets drained.

"StableMagnet and Others Rugpull $22M in Stablecoin Through Unverified Swap Code", BSC.news
"STABLEMAGNET - REKT", rekt.news

June 16, 2021

A not-so-stable stablecoin, titan, comes crashing down

An illustration of a gold coin with a large T, and the word titan spelled on the rim

Titan coin illustration (attribution)

The cryptocurrency "titan" dropped from $65 to $0.000000024 within a few hours, despite being a stablecoin that is supposed to be much less volatile than most cryptocurrencies. As the price began to drop, the smart contract encountered a bug that prevented investors from selling their holdings. Among those burned by the coin's crash was billionaire investor Mark Cuban, who had blogged about the token only days prior.

May 29, 2021

Hacker nets $6.3 million in Belt Finance exploit

(attribution)

Belt Finance fell victim to a flash loan attack which netted an attacker $6.3 million. This was yet another exploit targeting a protocol built on the Binance Smart Chain protocol, following other attacks over the previous five months on C.R.E.A.M. Finance, bEarn, Bogged Finance, Uranium Finance, Meerkat Finance, SafeMoon, Spartan Protocol, BurgerSwap, and PancakeBunny.

"Belt Finance loses millions in latest BSC-based DeFi exploit", Cointelegraph
"Belt", Rekt

No JavaScript? That's cool too! Check out the Web 1.0 version of the site to see more entries.