case-study
Ronin Bridge Hack: Anatomy of a $625 Million Private Key Compromise via Social Engineering
How a fake job offer led to the largest bridge exploit in DeFi history and exposed fatal validator centralization in the Ronin Network.
TrickyRoxxx
case-study
Monkey Drainer NFT Phishing Campaign: Anatomy of a Phishing-as-a-Service Operation That Extracted $16M from the Ethereum Ecosystem
How a commoditized drainer kit deployed across hundreds of fake mint sites systematically harvested NFTs, ETH, and ERC-20 tokens from thousands of victims.
case-study
Ledger Connect Kit Supply Chain Attack: How a Single Compromised npm Account Drained $600K Across the EVM Ecosystem
A phished ex-employee's NPMJS credentials turned a trusted frontend library into a cross-chain wallet drainer.
case-study
Safe Labs Address Poisoning Campaign: $3.02M Lost to Coordinated Vanity Address Social Engineering
How ~5,000 malicious lookalike addresses exploited transaction history habits to drain multisig users.
case-study
Phishing-Induced USDT Approval Drain: How a Single Malicious Signature Cost One Wallet $337,069
A social engineering attack exploiting ERC-20 approve mechanics to silently authorize complete token drainage.
case-study
Kevin Rose NFT Phishing Hack: How a Single Off-Chain Signature Drained $1.1M in Blue-Chip NFTs
A textbook social engineering attack exploiting OpenSea's Seaport protocol signature mechanics against a high-profile target.