|
🛡️ Crypto Security Briefing
Wed, 17 Jun 2026 02:42:28 GMT · last 72h
|
18 incidents |
$58.3M reported losses |
19 live sources |
|
|
Executive summary
The most material incident is a $36M exploit at Humanity Protocol, with a separate $20M Coinbase spoofing case and a $2.2M theft from Aztec Connect, totaling at least $58.3M in direct losses. Dominant attack vectors include phishing-wallet-drainers and smart contract exploits, though several incidents lack clear vector attribution. Regulatory actions are intensifying, with the CLARITY Act proposing $150M for crypto fraud investigations and the UK designating HTX under major sanctions. Enforcement is also rising globally, as seen in South Korea's arrests for USDT laundering linked to Cambodian fraud.
- Large-scale exploits remain the top financial risk to protocols.
- Phishing and wallet drainers are a persistent, low-friction attack vector.
- Sanctions enforcement is increasingly targeting cryptocurrency addresses.
- Authorities are successfully using blockchain analysis for fund recovery.
|
|
Attack vectors
phishing / wallet drainer · 1
|
|
Incidents & reports
|
DeFi Lending and DEX Fees Slump as Leverage Drains Out After June Selloff
Fees fell as much as 65% week over week across the largest lending protocols and decentralized exchanges.
The Defiant · Tue, 16 Jun 2026 20:49:56 GMT
|
|
OFAC and Crypto Crime: Every OFAC Specially Designated National with Identified Cryptocurrency Addresses
As far back as the early 1800s, the U.S. Department of the Treasury has issued economic sanctions to achieve foreign… The post OFAC and Crypto Crime: Every OFAC Specially Designated National with Identified Cryptocurrency Addresses appeared first on Chainalysis.
Chainalysis · Tue, 16 Jun 2026 16:16:12 GMT
|
|
CLARITY Act to set aside $150M for crypto fraud investigations
The Digital Asset Market Clarity Act has secured a $150 million allocation for law enforcement efforts targeting cryptocurrency scams and other digital asset crimes, according to U.S. Senator Cynthia Lummis. In a post published on X on June 16, the…
crypto.news · Tue, 16 Jun 2026 14:40:51 GMT
|
|
Humanity Protocol Launches New H Token Airdrop After $36M Exploit
$36.0M · Humanity Protocol has announced a full token migration and 1:1 airdrop of a new H token after the June 8 exploit that drained approximately $36 million.
The Defiant · Tue, 16 Jun 2026 14:40:00 GMT
|
|
OpenZeppelin Confidential Contracts v0.5 Diff Audit
Summary Type:Library Timeline:From 2026-05-18 → To 2026-05-21 Languages:Solidity Findings Total issues: 12 (6 resolved) Critical: 0 (0 resolved) · High: 0 (0 resolved) · Medium: 5 (2 resolved) · Low: 0 (0 resolved) Notes & Additional Information 6 notes raised (3 resolved) Client Reported Issues 1 issue reported (1 resolved)
OpenZeppelin · Tue, 16 Jun 2026 13:06:11 GMT
|
|
UK Designates HTX: What the Biggest Crypto Sanctions Action Yet Means for Compliance Teams | TRM Labs
The UK designated HTX for alleged Russian sanctions evasion. TRM covers immediate response steps, look-back guidance, and OFSI reporting obligations.
TRM Labs · Tue, 16 Jun 2026 13:00:00 GMT
|
|
Pyra to shut down after Drift exploit derails recovery efforts
Pyra has announced plans to shut down operations after months of efforts to recover from the impact of the Drift exploit, with user withdrawals remaining available until September 15, 2026. According to a June 15 announcement from Pyra, the crypto…
crypto.news · Tue, 16 Jun 2026 10:25:15 GMT
|
|
South Korea arrests 23 over USDT laundering for Cambodian fraud network
South Korean authorities have dismantled an alleged cryptocurrency laundering operation that moved 16.8 billion won ($11.1 million) through USDT transactions and exchange transfers on behalf of a Cambodia-based phishing syndicate. According to local news outlet Newsis, the Seoul Metropolitan Police…
crypto.news · phishing / wallet drainer · Tue, 16 Jun 2026 09:31:03 GMT
|
|
Ethereum price tests multi-year support trendline, can it reclaim $2,000?
Ethereum price has rebounded toward $1,800 after buyers stepped in near a multi-year support trendline while easing geopolitical tensions triggered a sharp recovery across risk assets. According to crypto.news market data, Ethereum (ETH) price surged more than 10% on June…
crypto.news · Tue, 16 Jun 2026 09:18:10 GMT
|
|
India’s ED files charges in $20M Coinbase spoofing case
$20.0M · The Enforcement Directorate has filed a prosecution complaint in a cryptocurrency fraud case involving more than $20 million in stolen digital assets and has attached assets worth about INR 64.55 crore (approx. $6.83 million) linked to the alleged proceeds of…
crypto.news · Tue, 16 Jun 2026 08:37:01 GMT
|
|
How Ghana’s EOCO and the UK NCA are Using Blockchain Analysis to Return $15 Million to Fraud Victims
When an e‑commerce “investment” platform promising high-yield returns began circulating in Ghana, thousands of people signed up to run online… The post How Ghana’s EOCO and the UK NCA are Using Blockchain Analysis to Return $15 Million to Fraud Victims appeared first on Chainalysis.
Chainalysis · Tue, 16 Jun 2026 08:32:24 GMT
|
|
Oklahoma flags BG Wealth, DSJ over suspected crypto fraud
Oklahoma warns investors about BG Wealth, DSJ and HQI Exchange, citing fake crypto returns, blocked withdrawals and added fee demands.
crypto.news · Tue, 16 Jun 2026 07:47:38 GMT
|
|
Congress proposes DOJ crypto theft task force a year after NCET shutdown
Congress has proposed a new Justice Department task force focused on cryptocurrency theft after the FBI received 181,565 crypto-related complaints and more than $11 billion in reported losses during 2025. According to legislation introduced by Representatives Lance Gooden and Josh…
crypto.news · Tue, 16 Jun 2026 07:12:31 GMT
|
|
BlockThreat - Week 24, 2026
$42.4M stolen across 15 incidents as attackers return to old code, exposed keys and deprecated protocols still holding value.
BlockThreat · Mon, 15 Jun 2026 21:42:11 GMT
|
|
EU Sanctions Russian Propagandists, Military Suppliers, and Officials in New Listings | TRM Labs
EU designates 34 individuals and 47 entities for supporting Russia’s war. Includes TRM analysis of crypto fundraising by a designated propagandist.
TRM Labs · Mon, 15 Jun 2026 20:42:00 GMT
|
|
Analysis of the $2.19 Million Asset Theft from Aztec Connect
$2.2M · Analysis of the $2.19 Million Asset Theft from Aztec Connect: ZK-Rollup Settlement Boundary Bypass Leads to L1/L2 State Discrepancy Background On June 14, 2026, the deprecated Aztec Connect RollupProcessor contract (0xff1f2b4adb9df6fc8eafecdcbf96a2b351680455) was exploited. The attacker constructed a boundary gap between numRealTxs and decoded_slots, extracting approximately $2.19 million worth of assets from the L1 pool in a single atomic transaction. Aztec Connect was deprecated in March 2024, but the immutable contract continues to be exposed to risk due to holding legacy user assets. This…
SlowMist · Mon, 15 Jun 2026 15:02:49 GMT
|
|
Thetanuts Finance: $2.1M Attack, Partial White-Hat Recovery
$105K · The on-chain options and structured product protocol Thetanuts Finance was exploited for $2.1 million. Security firm Blockaid published the exploit transaction and exploiter address shortly after the attack.
The Defiant · Mon, 15 Jun 2026 15:02:49 GMT
|
|
One Indicted Over Crypto ‘Wrench Attack’ in France
The crypto-related assault reportedly involved attackers posing as police officers, and follows a spate of attacks in the country.
Decrypt · Mon, 15 Jun 2026 14:40:46 GMT
|
|
|
Sources: BlockThreat, Rekt News, Cointelegraph (Security), crypto.news, The Defiant, CoinDesk, Decrypt, Protos, SlowMist, OpenZeppelin, Zellic, Chainalysis, TRM Labs, Elliptic, Trail of Bits, CISA Advisories, SANS ISC, DeFiLlama Hacks DB, SlowMist Hacked DB.
Sources unavailable: Week in Ethereum (HTTP 403 (native fetch)); X (security alerts) (HTTP 503: {"title":"Service Unavailable","detail":"Service Unavailable","type":"about:blank","status":503})
Generated by crypto-security-briefing · automated digest, verify before acting.
|
|