According to PANews on November 1, OKLink released its October 2024 security report, and the total losses caused by security incidents on the entire network chain were about 181 million US dollars. The losses caused by phishing scams accounted for 23.94% of the total losses, totaling about 43.53 million US dollars. The losses caused by REKT incidents accounted for 35.92%, totaling about 65.32 million US dollars.
On October 11, a user on Blast lost 15,079fwDETH, worth about $35 million, after signing a "permit" phishing signature. On October 16, multiple multi-signature wallets of Radiant Capital were attacked. The attackers broke into the hardware wallets of multiple developers by injecting malware into the hardware wallets. The attack process was so covert that the front end of the Gnosis Safe multi-signature wallet displayed legitimate transaction data, while the back end was simultaneously signing and executing tampered transactions, ultimately resulting in a loss of about $58 million.
In this month's security incidents, the attack methods are constantly changing. OKLink reminds users to be especially vigilant about phishing attacks involving "permit" and "approve" authorizations on social platforms. Such attacks have occurred frequently this month. When performing on-chain operations, be sure to carefully check the receiving address and do not easily trust the address in the transaction record, which may have been replaced by hackers. For multi-signature wallets, private key security must be strictly protected. When processing emails related to encrypted assets, the sender's identity and content authenticity must be carefully verified, and learn to use Web3 on-chain tools to avoid risks.