• bitcoinBitcoin (BTC) $ 80,501.00
  • ethereumEthereum (ETH) $ 2,276.80
  • tetherTether (USDT) $ 0.999664
  • xrpXRP (XRP) $ 1.43
  • bnbBNB (BNB) $ 656.71
  • usd-coinUSDC (USDC) $ 0.999836
  • solanaSolana (SOL) $ 94.51
  • tronTRON (TRX) $ 0.348425
  • staked-etherLido Staked Ether (STETH) $ 2,265.05
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.03
  • dogecoinDogecoin (DOGE) $ 0.108996
  • whitebitWhiteBIT Coin (WBT) $ 59.04
  • usdsUSDS (USDS) $ 0.999739
  • cardanoCardano (ADA) $ 0.270327
  • hyperliquidHyperliquid (HYPE) $ 40.18
  • wrapped-stethWrapped stETH (WSTETH) $ 2,779.67
  • leo-tokenLEO Token (LEO) $ 10.17
  • zcashZcash (ZEC) $ 548.73
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 76,243.00
  • bitcoin-cashBitcoin Cash (BCH) $ 438.32
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.998762
  • chainlinkChainlink (LINK) $ 10.24
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 2,466.93
  • moneroMonero (XMR) $ 403.06
  • the-open-networkToncoin (TON) $ 2.34
  • canton-networkCanton (CC) $ 0.153193
  • wrapped-eethWrapped eETH (WEETH) $ 2,465.31
  • stellarStellar (XLM) $ 0.162479
  • suiSui (SUI) $ 1.24
  • susdssUSDS (SUSDS) $ 1.08
  • litecoinLitecoin (LTC) $ 57.55
  • usd1-wlfiUSD1 (USD1) $ 0.999037
  • daiDai (DAI) $ 0.999624
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 76,366.00
  • avalanche-2Avalanche (AVAX) $ 9.80
  • memecoreMemeCore (M) $ 3.24
  • hedera-hashgraphHedera (HBAR) $ 0.093295
  • wethWETH (WETH) $ 2,268.37
  • ethena-usdeEthena USDe (USDE) $ 0.999346
  • shiba-inuShiba Inu (SHIB) $ 0.000006
  • rainRain (RAIN) $ 0.007512
  • usdt0USDT0 (USDT0) $ 0.998824
  • global-dollarGlobal Dollar (USDG) $ 0.999775
  • paypal-usdPayPal USD (PYUSD) $ 0.999815
  • crypto-com-chainCronos (CRO) $ 0.077448
  • hashnote-usycCircle USYC (USYC) $ 1.12
  • bittensorBittensor (TAO) $ 308.15
  • tether-goldTether Gold (XAUT) $ 4,676.32
  • uniswapUniswap (UNI) $ 3.74
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.22
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • polkadotPolkadot (DOT) $ 1.32
  • mantleMantle (MNT) $ 0.668760
  • pax-goldPAX Gold (PAXG) $ 4,675.23
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.066699
  • nearNEAR Protocol (NEAR) $ 1.58
  • ondo-financeOndo (ONDO) $ 0.394603
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.13
  • pi-networkPi Network (PI) $ 0.171594
  • okbOKB (OKB) $ 85.21
  • little-pepe-5Little Pepe (LILPEPE) $ 2.16
  • falcon-financeFalcon USD (USDF) $ 0.999404
  • htx-daoHTX DAO (HTX) $ 0.000002
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.15
  • internet-computerInternet Computer (ICP) $ 3.18
  • pepePepe (PEPE) $ 0.000004
  • aster-2Aster (ASTER) $ 0.670836
  • skySky (SKY) $ 0.074600
  • ripple-usdRipple USD (RLUSD) $ 0.999893
  • usddUSDD (USDD) $ 0.999686
  • bitget-tokenBitget Token (BGB) $ 2.09
  • ethereum-classicEthereum Classic (ETC) $ 9.32
  • aaveAave (AAVE) $ 95.75
  • bfusdBFUSD (BFUSD) $ 0.999497
  • morphoMorpho (MORPHO) $ 2.03
  • kucoin-sharesKuCoin (KCS) $ 8.36
  • janus-henderson-anemoy-treasury-fundJanus Henderson Anemoy Treasury Fund (JTRSY) $ 1.10
  • ethenaEthena (ENA) $ 0.120995
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.00
  • algorandAlgorand (ALGO) $ 0.121305
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.098930
  • cosmosCosmos Hub (ATOM) $ 2.08
  • quant-networkQuant (QNT) $ 71.71
  • kaspaKaspa (KAS) $ 0.037958
  • jito-staked-solJito Staked SOL (JITOSOL) $ 124.46
  • united-stablesUnited Stables (U) $ 1.00
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 11.08
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 2,404.69
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.23
  • render-tokenRender (RENDER) $ 1.88
  • binance-peg-wethBinance-Peg WETH (WETH) $ 2,262.26
  • blockchain-capitalBlockchain Capital (BCAP) $ 105.87
  • rocket-pool-ethRocket Pool ETH (RETH) $ 2,631.35
  • stable-2​​Stable (STABLE) $ 0.040859
  • nexoNEXO (NEXO) $ 0.913431
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999945
  • worldcoin-wldWorldcoin (WLD) $ 0.265387
  • aptosAptos (APT) $ 1.08
  • wbnbWrapped BNB (WBNB) $ 759.61
  • siren-2Siren (SIREN) $ 1.16
  • filecoinFilecoin (FIL) $ 1.09
  • ignition-fbtcFunction FBTC (FBTC) $ 76,389.00
  • arbitrumArbitrum (ARB) $ 0.136518
  • gatechain-tokenGate (GT) $ 7.34
  • justJUST (JST) $ 0.089940
  • jupiter-exchange-solanaJupiter (JUP) $ 0.230690
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.11
  • flare-networksFlare (FLR) $ 0.008655
  • venice-tokenVenice Token (VVV) $ 16.05
  • pump-funPump.fun (PUMP) $ 0.001952
  • binance-staked-solBinance Staked SOL (BNSOL) $ 108.24
  • build-onBUILDon (B) $ 0.657973
  • vechainVeChain (VET) $ 0.007476
  • xdce-crowd-saleXDC Network (XDC) $ 0.031503
  • bonkBonk (BONK) $ 0.000007
  • beldexBeldex (BDX) $ 0.079694
  • dexeDeXe (DEXE) $ 13.09
  • new-x-ceo-is-backNEW X CEO IS BACK (XFLOKI) $ 0.506041
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999720
  • ousgOUSG (OUSG) $ 115.21
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 76,461.00
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.009591
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 76,491.00
  • usdtbUSDtb (USDTB) $ 0.999306
  • ghoGHO (GHO) $ 0.999509
  • dashDash (DASH) $ 45.93
  • clbtcclBTC (CLBTC) $ 76,920.00
  • midnight-3Midnight (NIGHT) $ 0.033880
  • usual-usdUsual USD (USD0) $ 0.998119
  • official-trumpOfficial Trump (TRUMP) $ 2.33
  • skyaiSkyAI (SKYAI) $ 0.550055
  • hash-2Provenance Blockchain (HASH) $ 0.010235
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.807331
  • yldsYLDS (YLDS) $ 0.999720
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 2,419.84
  • terra-lunaTerra Luna Classic (LUNC) $ 0.000094
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 33.97
  • a7a5A7A5 (A7A5) $ 0.012926
  • tbtctBTC (TBTC) $ 70,942.00
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.223388
  • wrappedm-by-m0WrappedM by M0 (WM) $ 1.00
  • pancakeswap-tokenPancakeSwap (CAKE) $ 1.53
  • true-usdTrueUSD (TUSD) $ 0.999000
  • blockstackStacks (STX) $ 0.262610
  • injective-protocolInjective (INJ) $ 4.81
  • humanityHumanity (H) $ 0.255688
  • sei-networkSei (SEI) $ 0.069722
  • c8ntinuumc8ntinuum (CTM) $ 0.087592
  • euro-coinEURC (EURC) $ 1.17
  • mantle-staked-etherMantle Staked Ether (METH) $ 2,455.82
  • edgexedgeX (EDGE) $ 1.27
  • billions-networkBillions Network (BILL) $ 0.180689
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999983
  • chilizChiliz (CHZ) $ 0.042623
  • aerodrome-financeAerodrome Finance (AERO) $ 0.471677
  • resolv-wstusrResolv wstUSR (WSTUSR) $ 1.13
  • cocaCOCA (COCA) $ 1.30
  • kite-2Kite (KITE) $ 0.193114
  • adi-tokenADI (ADI) $ 4.02
  • tezosTezos (XTZ) $ 0.385301
  • doge-strategyDoge Strategy (DOGESTR) $ 0.288297
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 2,406.26
  • usdgoUSDGO (USDGO) $ 0.999797
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 76,200.00
  • curve-dao-tokenCurve DAO (CRV) $ 0.276415
  • spiko-amundi-overnight-swap-fund-eurSpiko Amundi Overnight Swap Fund (EUR) (EURSAFO) $ 1.18
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.03
  • spx6900SPX6900 (SPX) $ 0.443321
  • wrapped-flareWrapped Flare (WFLR) $ 0.009961
  • celestiaCelestia (TIA) $ 0.449933
  • unibaseUnibase (UB) $ 0.164761
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 2,266.86
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.998472
  • bianrensheng币安人生 (BinanceLife) (币安人生) $ 0.408443
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.12
  • apxusdapxUSD (APXUSD) $ 0.999738
  • sun-tokenSun Token (SUN) $ 0.020212
  • usxUSX (USX) $ 0.999769
  • layerzeroLayerZero (ZRO) $ 1.48
  • binance-peg-xrpBinance-Peg XRP (XRP) $ 1.59
  • ether-fiEther.fi (ETHFI) $ 0.443309
  • doublezeroDoubleZero (2Z) $ 0.106718
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 2,443.47
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 2,421.84
  • monadMonad (MON) $ 0.030919
  • labLAB (LAB) $ 4.63
  • noonNoon (NOON) $ 0.751949
  • kinesis-goldKinesis Gold (KAU) $ 149.72
  • sbtc-2sBTC (SBTC) $ 77,039.00
  • pendlePendle (PENDLE) $ 2.03
  • zebec-networkZebec Network (ZBCN) $ 0.003496
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 115.56
  • gnosisGnosis (GNO) $ 128.51
  • savings-usddSavings USDD (SUSDD) $ 1.03
  • flokiFLOKI (FLOKI) $ 0.000035
  • bitcoin-svBitcoin SV (BSV) $ 16.89
  • lido-daoLido DAO (LDO) $ 0.393561
  • jasmycoinJasmyCoin (JASMY) $ 0.006709
  • msolMarinade Staked SOL (MSOL) $ 133.18
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 2,265.06

Jill Gunter has wallet drained via vulnerable ThirdWeb contract

Bitcoin
By admin
0 1


Related Posts

Bitcoin Continues Its $80K Battle as US Jobs Data…

0

Beijing court jails two for selling personal data…

0

On Thursday, Jill Gunter, co-founder of “the base layer for rollups” Espresso, took to X to inform followers her wallet had been drained due to a vulnerability in a ThirdWeb contract.

The 10-year crypto veteran noted the “deep irony” of her funds being funneled into privacy protocol Railgun while she was “writing a defense of privacy in crypto to present in DC next week.”

In a follow-up thread, Gunter describes the process of investigating how over $30,000 USDC was lost.

Read more: ZachXBT cracks Railgun privacy to expose Bittensor hacker

The transaction, which drained Gunter’s jrg.eth address, occurred on December 9.

The tokens had been moved into the address the day before the theft “in anticipation of funding an angel investment I planned to make this week.”

Although the tokens had been moved from jrg.eth to another (0xF215), the transaction shows a contract interaction with 0x81d5.

This vulnerable contract that led to the drained wallet, Gunter found, was a Thirdweb bridge contract that she had previously used for “a $5 transfer.”

After contacting Thirdweb, she was informed that a vulnerability was found in the bridge contract in April. It “allowed anyone to access funds from users who had clicked through and accepted unlimited token approvals.”

Indeed, the contract is now labelled on Etherscan as compromised.

Read more: Explained: how crypto’s ‘largest supply chain attack’ stole just $0.05

A Thirdweb blog post, published today, states that the theft “resulted from the legacy contract not being properly decommissioned during our April 2025 vulnerability response.”

Thirdweb “permanently disabled the legacy contract… and no user wallets or funds remain at risk.”

Gunter praised the SEAL Security Alliance for its response, pledging to donate any potential reimbursement, and urged others to do the same.

Thirdweb’s second rodeo

In addition to the vulnerable bridge contract, ThirdWeb had previously disclosed a wide-reaching vulnerability in late 2023.

It informed the crypto community of “a security vulnerability in a commonly used open-source library.”

Security researcher and SEAL member Pascal Caversaccio dubbed Thirdweb’s statement “not responsible disclosure.” He argued that providing a list of vulnerable contracts gave black hats hackers a “head start.”

According to crypto scam tracker ScamSniffer’s analysis, over 500 token contracts were affected and at least 25 exploited.



Source link

admin 11400 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.