{"id":26412,"date":"2025-05-12T20:02:01","date_gmt":"2025-05-12T20:02:01","guid":{"rendered":"https:\/\/dogewisperer.com\/mobius-exploited-for-2-1m-while-scammers-breach-ledgers-social-media\/"},"modified":"2025-05-12T20:02:01","modified_gmt":"2025-05-12T20:02:01","slug":"mobius-exploited-for-2-1m-while-scammers-breach-ledgers-social-media","status":"publish","type":"post","link":"https:\/\/dogewisperer.com\/?p=26412","title":{"rendered":"Mobius Exploited for $2.1M While Scammers Breach Ledger\u2019s Social Media\u00a0"},"content":{"rendered":"<div>\n<p>The Mobius DeFi and real-world asset tokenization platform suffered a smart contract exploit on the BNB Chain on May 11, leading to the theft of $2.15 million in Mobius Tokens (MBU), reported blockchain security firm Cyvers.<\/p>\n<blockquote>\n<p>\u201cTwo minutes prior to the exploit, our system identified a deployment of a malicious smart contract that eventually targeted the Mobius Token smart contracts,\u201d Cyvers stated.<\/p>\n<\/blockquote>\n<p>They added that the attacker executed multiple malicious transactions via the contract, targeting the victim\u2019s address.<\/p>\n<p>However, there was no mention of the exploit on the MobiusDAO X feed.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p dir=\"ltr\" lang=\"en\">ALERT<br \/>\nOur system has detected an exploit on Mobius Token smart contracts, draining over $2.15M in Mobius Token ($MBU) on BNB Chain.<\/p>\n<p>Two minutes prior to the exploit, our system identified a deployment of a malicious smart contract, that eventually targeted the Mobius Token\u2026 <a href=\"https:\/\/t.co\/NEG5AXdfoc\" data-wpel-link=\"external\" target=\"_blank\">pic.twitter.com\/NEG5AXdfoc<\/a><\/p>\n<p>\u2014 Cyvers Alerts (@CyversAlerts) <a href=\"https:\/\/twitter.com\/CyversAlerts\/status\/1921489580991119736?ref_src=twsrc%5Etfw\" data-wpel-link=\"external\" target=\"_blank\">May 11, 2025<\/a><\/p>\n<\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<h2>MBU Crashes to Zero<\/h2>\n<p>Cyvers added that the hacker quickly deposited the stolen loot into the crypto mixer Tornado Cash to obfuscate the transactions.<\/p>\n<p>Blockchain security firm CertiK also posted an <a href=\"https:\/\/x.com\/CertiKAlert\/status\/1921483904483000457\" target=\"_blank\" rel=\"noopener\" data-wpel-link=\"external\">alert<\/a> stating that the hacker minted 9.7 quadrillion BEP-20 MBU tokens, which they swapped out for stablecoins.<\/p>\n<p>The transaction record also <a href=\"https:\/\/bscscan.com\/tx\/0x2a65254b41b42f39331a0bcc9f893518d6b106e80d9a476b8ca3816325f4a150\" target=\"_blank\" rel=\"noopener\" data-wpel-link=\"external\">indicated<\/a> that the hacker deposited just 0.001 wrapped BNB, worth around $0.65, and was able to exploit the smart contract.<\/p>\n<p>As a result, the MBU token value crashed to zero, <a href=\"https:\/\/dexscreener.com\/bsc\/0xb5252fcef718f8629f81f1dfcff869594ad478c6\" target=\"_blank\" rel=\"noopener\" data-wpel-link=\"external\">according<\/a> to DEXscreener.<\/p>\n<p>Ethereum\u2019s latest Pectra network upgrade has also introduced a dangerous new attack vector that could allow hackers to drain funds from wallets using only an offchain signature, <a href=\"https:\/\/x.com\/officer_cia\/status\/1920056314236952887\" target=\"_blank\" rel=\"noopener\" data-wpel-link=\"external\">reported<\/a> security researchers over the weekend.<\/p>\n<h2>Ledger, a Hacking Victim \u2026 Again<\/h2>\n<p>Mobius is not the only hack victim this weekend. French hardware wallet maker Ledger has been the victim of hacking yet again.<\/p>\n<p>Over the weekend, an attacker compromised a contracted moderator\u2019s account on Ledger\u2019s Discord channel and used it to post scam links.<\/p>\n<p>Users were told about a false \u201cvulnerability\u201d and urged to \u201cverify recovery phrases\u201d via a malicious link. Ledger managed to regain control of its account and remove the malicious links.<\/p>\n<p>Former Binance CEO Changpeng Zhao commented on the latest Ledger attack, stating, \u201cSocial network accounts for a crypto company are often the weakest links.\u201d<\/p>\n<blockquote class=\"twitter-tweet\">\n<p dir=\"ltr\" lang=\"en\">Just got this security warning.<\/p>\n<p>Ledger\u2019s Discord admin account was hacked. The scammer falsely claimed a security flaw and urged users to enter their recovery phrases on a phishing site.<\/p>\n<p>Lessons:<br \/>\n1. Never give up your private key recovery phrases no matter who is doing the\u2026<\/p>\n<p>\u2014 CZ BNB (@cz_binance) <a href=\"https:\/\/twitter.com\/cz_binance\/status\/1921799301375918252?ref_src=twsrc%5Etfw\" data-wpel-link=\"external\" target=\"_blank\">May 12, 2025<\/a><\/p>\n<\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Ledger has been <a href=\"https:\/\/cryptopotato.com\/ledger-announces-plans-to-fix-issues-related-to-recent-vulnerabilities-details\/\" data-wpel-link=\"internal\">embroiled in scams<\/a> and hacks over the past five years.<\/p>\n<p>In April, scammers sent physical letters to Ledger owners requesting seed phrases in a scam that may be connected to Ledger\u2019s <a href=\"https:\/\/cryptopotato.com\/ledger-users-vent-as-attacks-begin-no-refunds-from-company\/\" data-wpel-link=\"internal\">2020 data breach<\/a>, which exposed personal information and physical addresses of more than 270,000 customers.<\/p>\n<p>The post <a href=\"https:\/\/cryptopotato.com\/mobius-exploited-for-2-1m-while-scammers-breach-ledgers-social-media\/\" rel=\"nofollow\">Mobius Exploited for $2.1M While Scammers Breach Ledger\u2019s Social Media\u00a0<\/a> appeared first on <a href=\"https:\/\/cryptopotato.com\/\" rel=\"nofollow\">CryptoPotato<\/a>.<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>The Mobius DeFi and real-world asset tokenization platform suffered a smart contract exploit on the BNB Chain on May 11, leading to the theft of $2.15 million in Mobius Tokens (MBU), reported blockchain security firm Cyvers. \u201cTwo minutes prior to the exploit, our system identified a deployment of a malicious smart contract that eventually targeted [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"iawp_total_views":0,"footnotes":""},"categories":[2],"tags":[3,4,5],"class_list":["post-26412","post","type-post","status-publish","format-standard","hentry","category-news","tag-crypto","tag-doge","tag-news"],"_links":{"self":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/26412","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=26412"}],"version-history":[{"count":0,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/26412\/revisions"}],"wp:attachment":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=26412"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=26412"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=26412"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}