CipherGuard Recovery

⚠️ALERT: HUMANITY PROTOCOL SUFFERS $31 MILLION EXPLOIT, TOKEN PLUNGES -90% Humanity Protocol has suffered a MAJOR security breach after private keys linked to a Humanity Foundation member were compromised, as confirmed by founder Terence Kwok. More than 19 wallets have been drained for over $31 MILLION, with the attacker actively swapping ethereum:0xcf5104d094e3864cfcbda43b82e1cefd26a016eb tokens into ETH. The Team has urged all users to avoid the bridge and all liquidity pools until safety is confirmed.

🚨🇮🇶 A threat actor known as 7by7 is selling a dataset allegedly tied to Korek Telecom, one of Iraq's major mobile network operators. The actor claims the database contains over 750,000 rows of data covering subscribers across Iraq, said to include fingerprint photos. Sample images have been posted, with the actor offering more samples and a price after contact. Claim is unverified. 💥 Stop guessing what's redacted. Paid subscribers see everything: https://t.co/281Qjc6p2J

🚨SlowMist TI Alert🚨 💸 Loss: 14.411518807585587 ETH 🔍 Root Cause: Storage slot collision between `ATOHook.rewards` mapping slot and Solady `ReentrancyGuard` fixed slot (`0x02215292eb9609279094554c6e223f800950648ddfa3da30329838d6c170928d`). The `nonReentrant` modifier in `getReward()` writes sentinel value `0xffffffffffffff` to the guard slot, which is simultaneously read as `rewards[attackContract]` due to the collision. This inflated reward is paid as ETH each call, allowing 200 repeated claims. 📌 Attacker (EOA): 0x2d2aafc193c24e59bd16139056ac9b4df4d37ad0 📌 Victim Contract: 0xa10de71ddb4e0d51938ef6e0118822e157a62888 📌 Attack Contract: 0x2441e480f62bf609a08da09143e4baf8a817d757 Storage collision between reward accounting and reentrancy guard enables unlimited reward drainage. Powered by #SlowMist.AI https://t.co/vzW3aa8pnH

A ethereum:0xae78736cd615f374d3085123a210448e74fc6393 holder lost $4.5M across 13 wallets but managed to save another $4.7M from being stolen. The victim's wallets had been dormant for years until May 5, when the attacker drained a total of $4.5M. The victim was able to secure and move $4.7M before the attacker could access the remaining funds. The attacker has already begun laundering the stolen assets. Theft addresses: 0xF63C454a9E38d3F1e8Cd6fD31E259dd9EF052Ece 0xd4681fd23aF08dC49816A8b7Da6a05f4880cF4db Stay smart.

Someone is trying to legally steal $285 BILLION in Bitcoin without touching a single wallet The coins sit across 39,069 old wallets that have not moved in over a decade, around 3.8 million Bitcoin in total Their claim is that the original owners are gone, so the coins count as abandoned property Under an old New York law they are calling themselves the finder, the same way you might claim a wallet left on the street They go by a fake name, Noah Doe and operate through two shell companies in Wyoming The strangest part is how they delivered the legal notice Normally a lawsuit reaches you by mail or in person but here there were no names and no addresses, only wallet numbers sitting on a blockchain So the court let them reach all 39,069 owners directly through Bitcoin itself Their team sent 98 rounds of tiny payments to those wallets, each carrying less than a dollar of Bitcoin and a link to the abandonment notice Every wallet had 90 days to respond and prove the coins were still theirs which most of them ignored A wallet that received 35.55 Bitcoin in March 2011, back when a single coin was worth less than a dollar, was untouched for over 14 years On June 2 it moved, sending 15 coins to a new wallet and keeping the other 20, out of a stash worth about 2.5 million dollars A second wallet from the same 2011 era moved another 20 Bitcoin, worth about 1.5 million dollars, only 13 hours earlier The entire case rests on these coins being abandoned, so the moment someone tried to take them, the real owners proved they were still here Whoever owns them paid almost nothing for coins now worth millions Hundreds of other old wallets had already done the same thing during the notice campaign, which removed them from the lawsuit before it even began

🚨🇪🇬 A threat actor known as R3D3MPTION is claiming to be selling alleged Egyptian citizens’ PII and documents. The actor claims they compromised a Digital Egypt-related local service and obtained more than 70GB of documents plus 5GB of PII. The listing says the data includes a CITIZENS.csv file with 13,117,317 records, along with names, national ID-related fields, addresses, DOB, sex, religion, nationality, mobile numbers, insurance numbers, job details, and other government-linked fields. The actor also claims to have 118,000 citizen documents, including identity images, contracts, and other files. Claim is unverified. 💥 Stop guessing what's redacted. Paid subscribers see everything: https://t.co/281Qjc6p2J