2026-01-16 07:32:37

The recently exposed DeadLock ransomware once again reminds us of the security risks in the blockchain ecosystem. Since this malicious program first appeared in July, it has employed quite cunning countermeasures—using smart contracts on the Polygon blockchain to store and dynamically rotate proxy server addresses, thereby continuously updating command and control infrastructure and effectively avoiding traditional blacklisting strategies.

The infection process is straightforward: once a user's system is compromised, data is encrypted and locked. The hackers then issue a final ultimatum—pay the ransom, or the stolen sensitive information will be sold on the dark web. This dual extortion mode has become the standard tactic for current ransomware.

It is worth noting that the attackers cleverly reverse the use of blockchain technology—smart contracts, originally meant as a security infrastructure, are instead used to build more covert criminal networks. This reminds us that while enjoying the convenience of blockchain, we must strengthen our security awareness, regularly check for system vulnerabilities, and prevent becoming targets of such threats.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

9 Likes

Reward
9
4
Repost
Share

Comment

0/400

MetaMaskVictim

· 10h ago

Damn, how can it be played like this? Running a ransomware command center on Polygon, this idea is brilliant. Did hackers really treat the chain as their own server? Double extortion and still need to guard against this, feels endless. No, smart contracts were originally the savior, but now they’re being used as tools for crime? That’s a bit too ironic. How to put it, defenses are hard to prevent entirely, still need to do more backups, don’t believe in the nonsense that complete decentralization is safe. The Polygon ecosystem thing has been bothering me, if it gets exposed, how big would the impact be? Looks like I need to give my system a full check-up, these two months of security news are more and more exciting.

View OriginalReply0

WhaleShadow

· 10h ago

Wow, Polygon's smart contract was hijacked and used as a botnet, this is really mind-blowing...

View OriginalReply0

AirdropHarvester

· 10h ago

Brothers, this DeadLock is really outrageous. Using Polygon as a puppet. --- It's the same double extortion trick. I'm already tired of seeing it. --- Wait, hackers are using smart contracts in reverse. We're still bragging about blockchain security. That's hilarious. --- Protection awareness? First, keep your private keys safe. If you can't do the basics well, what are you talking about? --- Polygon has been hacked. It seems this public chain has to take more blame. --- Honestly, using on-chain storage for C&C servers is really genius. --- It's time to update the system, everyone. This virus has no eyes. --- It feels like these days, using blockchain for bad deeds is even more covert. Ironic. --- Stealing information flows on the dark web. We've seen this script too many times.

View OriginalReply0

MidnightMEVeater

· 10h ago

Good morning, at three o'clock in the early morning... These people treat smart contracts like a phone book, truly incredible. The transparency of blockchain has instead become a hacker's GPS, to the point of suffocation. --- The biggest risk in playing with blockchain is this kind of reverse arbitrage, so clever it hurts. They build walls using your tools, and you still have to pay to buy bricks. --- Dual extortion mode? It's already standard menu items, it all depends on who can pay the gas fee. --- A question: who will be compromised first, your firewall or your smart contract? Underlying vulnerabilities are always far more important than flashy tricks. --- This is what you call stabbing yourself with your own dagger. Polygon's prosperity has actually given them the widest stage. --- Dark web data sales... to put it plainly, it's an upgraded version of the liquidity trap, just changing the dock. --- Nocturnal creatures are really good at calculations, using the immutability of smart contracts to establish permanent channels. You can't defend against it.

View OriginalReply0