Share this page!

CIA Officer Profile picture
Twitter logo
Oct 6 18 tweets 7 min read
Researchers have detected an unusual transaction of $718M $ on the BSC network, the meaning of this is not clear at the moment, but many are already talking about a possible hack 🤷‍♂️

bscscan.com/address/0x489a…
However, until official statements are made, it is unlikely to be possible to establish this - due to the technical side of the issue!

Source 1:

Source 2:
718M $ including:

1,04М BNB
$389М in venusBNB
$28.8М BUSD
Tether just blacklisted the address it seems and someone is exiting quickly into ftm/avalanche -> eth and he is using stargate and multichain/anyswap!

Suspect address: bscscan.com/address/0x489a…

Proof of Tether banning assets:
Possible illegal activity is indicated by the too large slippage with which $10M BUSD was exchanged for $9M BSC-USD…

bscscan.com/tx/0x0cc52b19a…
The Suspect wallet was funded through BSC Token Hub for 1 million BNB, then the funds were placed in the Venus lending, from which $150M USDC/USDT/BUSD was borrowed. The funds then began to move across various networks (ETH, FTM)…

Also there are news like this rn:
BSC blockchain has just been halted. No new blocks on bscchain!

‼️‼️‼️
There is: ~426m in bsc, 53m in eth, 50m in phantom ~10m on eht l2's so as the chain has been stopped, estimated loss is 115M $, I’ll keep you posted!
Now officially:

Before the hack, the BNB bridge exploiter registered as a relayer for this bridge!

Source:

Tracing via @TenderlyApp: dashboard.tenderly.co/tx/bsc/0x05356…

Alternative take:

Check out: bscscan.com/tx/0xe1fe5fef2…
More official clarifications:
@threadreaderapp unroll
FYI
If you like what I do please donate me github.com/OffcierCia/sup… directly or support me via reading and reposting officercia.mirror.xyz my articles 👀

Or donate to:

0x83bC633E2F594fe9c6bd1a3ACc1E93dfb0F4a166 or officercia.eth

Thank you ❤️ I’m doing it for your safety!
BNB used IAVL for verification...

Info on stolen funds from @SlowMist_Team :
FYI spotted an awesome explanation
Awesome deep dive & explanation!

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with CIA Officer

CIA Officer Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @officer_cia

CIA Officer Profile picture
Oct 3
Greetings, dear readers! Today is the second article in the series about the auditing tips we do at @pessimistic_io 🙂

As usual, nothing superfluous - only important information!

blog.pessimistic.io/fuzzing-solidi…
If you have wanted to become an auditor for a long time but do not know where to start - visit @pessimistic_io blog, soon there will be many articles that will help you in your education!

blog.pessimistic.io

Check out my own blog as well: officercia.mirror.xyz 🙂
Did you like the article? What do you want to read more about? Feel free to DM/Reply ❤️
Read 4 tweets
CIA Officer Profile picture
Sep 29
Spotted an awesome dedicated VM for Blockchain security created by @HalbornSecurity🫡



Inspired by @kalilinux 😎
More than half of auditors can't figure Slither out and give it up, if used properly, it's a real auditor's Swiss pocket-knife! Suggest checking out my article as well!

blog.pessimistic.io/slither-an-aud…
Btw, in @pessimistic_io we have released pretty awesome public reports, check them out to get the methodology of audit:

github.com/pessimistic-io…
Read 4 tweets
CIA Officer Profile picture
Sep 29
🕊 In this difficult time it's hard to think about anything but global problems, but… I do want us to have something to distract ourselves with, so nothing in my blog will change in terms of content in the near future!

Thank you very much for your attention and take care 🕊
I get asked a lot and I'd like to say it again…

My position: I am 100% pacifist, anti-war, pro-humanity, pro-human-rights.

Mixed (moderate) political views. I love all people.
P.S. New articles 🔜
Read 4 tweets
CIA Officer Profile picture
Sep 20
Twitter put me under a shadow ban so I will delete my recent tweets.

Full thread with more detailed information on Wintermute is still accessible 👇

threadreaderapp.com/thread/1572146…
Last time deleting interests and waiting for 2 days worked out for me, gonna try it this time as well...

shadowban.yuzurisa.com/officer_cia

@adrianhetman how you was able to escape?
More likely this was an issue github.com/johguse/profan…
Read 5 tweets
CIA Officer Profile picture
Sep 18
First cross-blockchain replay attack detected 👀
Good advice from @toschi_eth 👇

Sign 1 transaction transferring $ETH to yourself in (Ethereum mainnet) to start with a different nonce when you sign the first transaction in ETHW.
Also. Only 250 WETH can be moved through the bridge, so it's full for today.
Read 10 tweets
CIA Officer Profile picture
Sep 17
Gm! I’m a bit late with it, but, please share to those who own deployers of smart contracts with vanity addresses generation tool - profanity!

blog.1inch.io/a-vulnerabilit…
I have been asked several times about how Authors from @1inch derived private key from public, then started searching for info on this attack and found a very interesting discussion with its creators - I have compiled everything in this article FYI

graph.org/Profanity-Clar…
FYI TLDR

github.com/johguse/profan…
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

Email the whole thread instead of just a link!

Separate emails with commas

:(