GetChain News
中简 中繁 EN
GetChain News
Toggle sidebar
Security Alliance

Security Alliance

Active

Non-profit Web3 security research organization

securityalliance.org X LinkedIn

News Heat Trend

Project Overview

The Security Alliance, a nonprofit research organization focused on Web3 security, has launched several initiatives aimed at enhancing industry security, including Wargames, SEAL 911, SEAL Intel, and Safe Harbor.

Research

Event-related news

View more View more

Phishing Attack via Fake Uniswap Google Ads Has Stolen at Least $400,000

According to Cointelegraph, phishing ads impersonating the decentralized exchange protocol Uniswap have appeared in Google search results, enabling attackers to steal at least $400,000. On-chain analyst b-block stated that the associated counterfeit websites are draining funds from multiple wallets; the implicated addresses currently hold a combined total of 146 ETH—worth approximately $306,000 at press time. Security Alliance (SEAL) noted that such fraudulent Google ads are a common source of phishing attacks, with attackers either purchasing ad placements or compromising legitimate advertising accounts to impersonate popular crypto protocols in sponsored search results. SEAL also reported that between March 13 and March 30, these attacks resulted in total losses amounting to $1.27 million.

Phishing Attack via Fake Uniswap Google Ads Has Stolen at Least $400,000

According to Cointelegraph, phishing ads impersonating the decentralized exchange protocol Uniswap have appeared in Google search results, enabling attackers to steal at least $400,000. On-chain analyst b-block stated that the associated counterfeit websites are draining funds from multiple wallets; the implicated addresses currently hold a combined total of 146 ETH—worth approximately $306,000 at press time. Security Alliance (SEAL) noted that such fraudulent Google ads are a common source of phishing attacks, with attackers either purchasing ad placements or compromising legitimate advertising accounts to impersonate popular crypto protocols in sponsored search results. SEAL also reported that between March 13 and March 30, these attacks resulted in total losses amounting to $1.27 million.

North Korean hackers use AI technology to conduct social engineering attacks against Zerion hot wallets

Zerion disclosed that some of its corporate hot wallets were recently targeted by an AI-driven social engineering attack linked to North Korean hackers, resulting in losses of approximately $100,000. Zerion stated that user funds, applications, and infrastructure remain unaffected and proactively disabled its web application to mitigate risk. This incident marks the second such attack this month, following the $280 million breach of Drift Protocol, underscoring how North Korean hackers are leveraging AI to refine social engineering tactics—primarily targeting employees and developers at crypto firms. The Security Alliance (SEAL) tracked the hacker group UNC1069, which conducts low-pressure, multi-week social engineering campaigns across platforms including Telegram, LinkedIn, and Slack, using AI tools to edit images and videos to enhance attack efficiency.

Related news

Phishing Attack via Fake Uniswap Google Ads Has Stolen at Least $400,000

According to Cointelegraph, phishing ads impersonating the decentralized exchange protocol Uniswap have appeared in Google search results, enabling attackers to steal at least $400,000. On-chain analyst b-block stated that the associated counterfeit websites are draining funds from multiple wallets; the implicated addresses currently hold a combined total of 146 ETH—worth approximately $306,000 at press time. Security Alliance (SEAL) noted that such fraudulent Google ads are a common source of phishing attacks, with attackers either purchasing ad placements or compromising legitimate advertising accounts to impersonate popular crypto protocols in sponsored search results. SEAL also reported that between March 13 and March 30, these attacks resulted in total losses amounting to $1.27 million.

Ethereum Foundation-funded project Ketman identifies 100 North Korean IT personnel

According to Cointelegraph, the Ethereum Foundation stated that its funded Ketman project identified 100 North Korean IT personnel operating covertly within Web3 organizations over a six-month period and issued warnings to approximately 53 projects indicating they may have hired such individuals. The project focuses on the issue of “fraudulent developers” in the crypto industry and is part of the ETH Rangers Public Safety Grant Program. Ketman has also developed an open-source detection tool for identifying suspicious GitHub activity and collaborated with the Security Alliance to co-develop an industry-wide identification framework for detecting North Korean IT personnel.

North Korean hackers use AI technology to conduct social engineering attacks against Zerion hot wallets

Zerion disclosed that some of its corporate hot wallets were recently targeted by an AI-driven social engineering attack linked to North Korean hackers, resulting in losses of approximately $100,000. Zerion stated that user funds, applications, and infrastructure remain unaffected and proactively disabled its web application to mitigate risk. This incident marks the second such attack this month, following the $280 million breach of Drift Protocol, underscoring how North Korean hackers are leveraging AI to refine social engineering tactics—primarily targeting employees and developers at crypto firms. The Security Alliance (SEAL) tracked the hacker group UNC1069, which conducts low-pressure, multi-week social engineering campaigns across platforms including Telegram, LinkedIn, and Slack, using AI tools to edit images and videos to enhance attack efficiency.