⬢ GM Security — 2026-06-18: $99.1M across 30 incidents
Daily crypto security briefing · Edited by George Donnelly
2026-06-18 13:57 UTC · last 72h · 30 items · $99.1M reported losses · 52 sources
📊 Trend tracker
- 17 new today · 13 developing
- 7-day: 77 incidents, $185.8M stolen
- 30-day: 77 incidents, $185.8M stolen
- 7-day vectors: smart-contract bug (14), phishing / wallet drainer (7), private-key compromise (5)
- Repeat targets (30d): uxlink (4), thetanuts (4), humanity (3), dip (2), blocksecteam (2)
Last 24 hours
- [NEWS · NEW] XRP tests key trendline support as bullish divergence fuels recovery hopes (crypto.news)
- [EXPLOIT · NEW] @Phalcon_xyz: Correct: this is not the same bug as the previous one, though both are circuit public input binding issues and the exec… (@Phalcon_xyz)
- [ADVISORY · NEW] Microsoft warns crypto clipper now acts like backdoor (crypto.news)
- [ENFORCEMENT · NEW] HyperFund promoter Bitcoin Rodney admits role in $1.8B crypto fraud — $1.80B (crypto.news)
also: Decrypt
- [NEWS · NEW] Ark Invest buys $18.4M in Coinbase shares, trims Robinhood (crypto.news)
- [NEWS · NEW] Live markets: DXY Index breaks higher as bitcoin tries to weather stronger dollar (CoinDesk)
- [EXPLOIT · NEW] @CertiKAlert: #CertiKInsight 🚨 — $42.0M (@CertiKAlert)
also: @CertiKAlert
- [EXPLOIT · NEW] @PeckShieldAlert: #PeckShieldAlert The @UXLINKofficial exploiter-labeled address has swapped ~14.6M $DAI for 8,298.6 $ETH. — $14.6M (@PeckShieldAlert)
- [EXPLOIT · NEW] @HalbornSecurity: Multisig doesn't protect you if your keys share the same machine. 🔑 (Halborn)
- [NEWS · NEW] @immunefi: Everyone keeps telling you crypto is dead. No money left. No opportunity. — $500K (@Immunefi)
- [NEWS · NEW] @immunefi: It’s a good day to find a crit https://t.co/1XIzuycxCL (@Immunefi)
- [NEWS · NEW] @pcaversaccio: ok guys, talk is cheap as you all know. let's move forward here; some very preliminary thoughts on how such a browser c… (pcaversaccio)
- [NEWS · NEW] @tayvano_: > beautiful simple clean (@tayvano_)
- [NEWS · DEVELOPING · day 2] @tayvano_: Boeing never told the USG that they cannot prevent their airplanes from falling out of the sky. (@tayvano_)
- [ADVISORY · DEVELOPING · day 2] @tayvano_: The Fed, Iran Trade, and Why BTC Looks Cheap Right Now https://t.co/sAVrcjp96K (@tayvano_)
- [NEWS · DEVELOPING · day 2] @tayvano_: unc1069 / sapphire sleet / whatever you want to call them (@tayvano_)
- [ADVISORY · NEW] @pcaversaccio: you can fully destroy perfect onchain privacy by leaking metadata (IP, user-agent, timezone, language settings, etc.).… (pcaversaccio)
- [ADVISORY · DEVELOPING · day 2] @immunefi: SR Summer is just getting started https://t.co/pTrDs8Z1QI (@Immunefi)
- [ADVISORY · DEVELOPING · day 2] @immunefi: Finding security signal in web3 has been too slow for the people who need it most. (@Immunefi)
Earlier · 24–72h
🧠 Deep reads
💡 Security thought-spark
Bridge inputs are untrusted inputs: validate source chain, sender, and nonce on every cross-chain message. Replays are how bridges get drained.
Full data: https://gmsecurity.net/briefing.json. Feedback or a source to add? [email protected]. George Donnelly offers Web3 development & security consulting.