GANA Payment hacked; losses exceed $3 million
On Thursday, the crypto payment infrastructure developer GANA Payment confirmed it had been attacked, with its team and an external firm investigating the incident. Blockchain researcher ZachXBT reported that the project lost more than $3 million in crypto assets. The attacker reportedly converted funds into 1,140 BNB (about $1.04 million) on the Binance Smart Chain and bridged assets to Ethereum, where 346.8 ETH (about $1.05 million) were deposited to Tornado Cash, with around 346 ETH currently dormant on Ethereum. The price of the GANA token collapsed by roughly 99% in a single day.
“The attacker deposited 1140 BNB ($1.04M) to Tornado Cash on BSC and bridged funds to ethereum, where another 346.8 ETH ($1.05M) was deposited to Tornado. 346 ETH ($1.046 million) currently sits dormant on ethereum,”
Some commentators doubt the claim that the “interaction contract” was the target, suggesting private-key leakage as a more likely cause for the theft. While GANA has promised a comprehensive reboot plan, questions remain about whether the vulnerability was in the contract itself or in compromised access credentials.
Eternidade Stealer targets Brazilian WhatsApp users
In a separate development, Trustwave SpiderLabs researchers reported the Brazilian-user-targeting trojan Eternidade Stealer, which is distributed via WhatsApp. The malware steals victims’ entire WhatsApp contact lists, then propagates by sending messages to all contacts with a personalized greeting, a malicious file, and a follow-up message, while attempting to avoid detection.
The combined headlines reflect ongoing concerns about security in the crypto space, from on-chain exploitations to social engineering and malware vectors targeting popular messaging platforms.
Авторское резюме: Сообщения подчеркивают уязвимости в DeFi-платформах и угрозы через мессенджеры, влияя на доверие к криптоинфраструктурам и безопасному взаимодействию пользователей.