Latest Paper from Cloud Security Alliance Examines Top 10 Blockchain Attacks, Vulnerabilities, and Weaknesses>
Cloud Security Alliance
SEATTLE â Sept. 28, 2021 â The Cloud Security Alliance (CSA), the worldâs leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Top 10 Blockchain Attacks, Vulnerabilities, and Weaknesses, the latest research from the CSA Blockchain/Distributed Ledger working group. The report offers a high-level overview of the top 10 attack vectors targeting cryptocurrency and distributed ledger technology (DLT), namely exchange hacks, Decentralized Finance (DeFi) hacks, 51% attacks, phishing (for private keys), rug pull/exit scams, ransomware, SIM swaps, investment scams, high-profile doubler scams, and extortion. Illustrative examples are provided for each vector, along with an overview of the costly lessons that can result.

As the authors note, unaudited smart contracts and lapses in security protocols can result in major losses for centralized and decentralized exchanges. In the last five years, for example, 43 exchanges have been publicly hacked, and more than 49 DeFi protocols have been exploited, resulting in a loss of more than $2.8 billion. The paper aims to educate everyone from developers to compliance officers and day-to-day cryptocurrency users so that they might avoid the same pitfalls.
Link: https://cloudsecurityalliance.org/press-releases/2021/09/28/latest-paper-from-cloud-security-alliance-examines-top-10-blockchain-attacks-vulnerabilities-and-weaknesses/