We're sunsetting PodQuest on 2025-07-28. Thank you for your support!
Export Podcast Subscriptions
cover of episode 152: Stacc Attack

152: Stacc Attack

2024/12/3
logo of podcast Darknet Diaries

Darknet Diaries
AI Deep Dive AI Chapters Transcript
People
J
Jack Ryder
J
Jarett Dunn
Topics
Jack Ryder:本期节目讲述了Jarett Dunn(StaccOverflow)对Pump Fun平台发起的“Stacc Attack”事件,该事件涉及数百万美元的加密货币盗窃。事件的独特之处在于其戏剧性和对迷因币价值以及网络安全问题的思考。Jack Ryder详细描述了Jarett Dunn的攻击过程,以及Pump Fun平台的运作机制、用户行为以及平台存在的安全漏洞和监管缺失等问题。同时,Jack Ryder还探讨了迷因币的价值来源、Pump Fun平台的盈利模式以及Jarett Dunn的动机等问题。 Jarett Dunn:Jarett Dunn承认自己对Pump Fun平台发起了攻击,并解释了其攻击方法和动机。他承认自己利用了Pump Fun平台的漏洞,并表示其目的是为了揭露平台存在的安全风险和监管缺失。他详细描述了攻击过程,并对自己的行为表示后悔。同时,他还谈到了自己与Pump Fun团队的矛盾、工作环境以及个人生活中的困境等问题。 Jarett Dunn:我承认我对Pump Fun平台发起了攻击,我利用了平台的漏洞,将数百万美元的加密货币转移到其他项目中。我的动机并非为了个人利益,而是为了揭露平台存在的安全风险和监管缺失。Pump Fun平台缺乏KYC/AML措施,存在金融建议问题,并且缺乏明确的网站规则,这些问题导致平台存在严重的风险。我的行为虽然造成了损失,但我认为我的行为是必要的,因为平台的运营方式存在严重的问题。我为我的行为造成的损失表示歉意,但我坚信我的行为是正确的。

Deep Dive

Chapters
Jarett Dunn recounts his journey into photography and his first major purchase, a Canon 5D camera, which he eventually found too expensive to use.
  • Jarett's initial interest in photography and DSLRs.
  • His obsession with Canon Rebel cameras and his strategy to buy undervalued ones on eBay.
  • The emotional shift after purchasing the expensive Canon 5D, leading to fear of using it and eventual disillusionment with photography.

Shownotes Transcript

Jarett Dunn, AKA StaccOverflow, stole millions of dollars from a website called Pump Fun, and he wanted to do it in the most dramatic and theatrical way he could. His big heist is known as the “Stacc Attack”.

https://x.com/STACCoverflow)

He has a merch store now freestacc.io).

Sponsors

Support for this show comes from Cobalt Strike). Cobalt Strike simulates real-world, advanced cyber attacks to enable red teams to proactively evaluate an organisation’s security readiness and defence response. Their Command and Control framework gives red teamers the ability to customise their engagements and incorporate their own tools and techniques, allowing you to stress-test specific parts of your incident response capabilities. Learn more about Cobalt Strike and get a custom demo at https://cobaltstrike.com/darknet).

Support for this show comes from Axonius). The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet) to learn more and try it free.

Support for this show comes from ThreatLocker®). ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com).