热门话题
#
Bonk 生态迷因币展现强韧势头
#
有消息称 Pump.fun 计划 40 亿估值发币,引发市场猜测
#
Solana 新代币发射平台 Boop.Fun 风头正劲
[已删除并重新发布以澄清这是一个网络钓鱼攻击,而不是黑客攻击]
在过去的60天里,一个网络钓鱼攻击已使Hyperliquid上的1200多个地址受到影响
该网络钓鱼攻击通过一个单一签名工作,将EOA升级为1 of 1的多重签名,攻击者是唯一的签名者
升级是即时的,并且给予黑客对HyperCore上所有资产的完全访问权限(包括在7天后解除质押HYPE和提取)
多重签名是HyperCore的基本功能,因此攻击者无法访问HyperEVM上的资产(仅限HyperCore)
将在下一条推文中放出受影响地址的电子表格(感谢@_Syavel_提供数据)
1200多个被泄露地址的列表:
紧急:如果您的地址在此列表中,请私信任何您记得访问或签署交易的HyperEVM应用程序或网站,以便我们尽快识别源网站或去中心化应用(dapp)
如果您的地址在此列表中,您在 HyperEVM 上的资产是安全的,可以转移到新地址。
钓鱼签名只有在黑客的签名或 Hyperliquid 团队/验证者对多重签名原语进行某种升级的情况下才能被逆转。
强烈建议将热钱包和冷钱包分开(特别是在尝试新应用时)。
此外,您绝对不应该签署不易读的文本签名。如果有疑问,请创建一个新钱包并使用那个。
@0xBreadguy 看起来可能实际上是被泄露的公钥
2025年6月7日
This isn't phishing🤦♀️
These private keys were previously compromised by malware. They all have their balances swept on other chains to known sweeper bots associated with MaaS / infostealer logs e.g. Raccoon, Vidar, etc.
Basically someone went thru millions of already-compromised keys, identified the ones that had Hyperliquid shit, and is sweeping those balances.
The keys were seen in logs (aka compromised) as early as Fall 2023 and as recently as Mar 2025. Most of the ones with any remaining balances are found in the more recent logs (e.g. Jan 2025) but this says more about which addresses still have a balance than it does about when the key was first compromised.
Lesson: Don't install malware, kids.
59.39K
热门
排行
收藏