Pages:
Author

Topic: DeFi hacks [history] - page 16. (Read 19377 times)

legendary
Activity: 1932
Merit: 4602
August 12, 2021, 09:09:47 AM
https://decrypt.co/78355/poly-network-hacker-returns-million

Poly Network Hacker Returns $342 Million
The largest crypto hack in history might have a happy ending after all as Poly Network sees more than half of the stolen funds returned.

https://decrypt.co/78364/poly-network-hacker-says-exploit-was-just-for-fun
Poly Network Hacker Says Exploit Was Just ‘For Fun’
The Poly Network hacker denies evil intent and says they wanted to teach the project a lesson.



New hack, new post!

DAO Maker Statement — Thursday, 12th of August
https://medium.com/daomaker/dao-maker-statement-thursday-12th-of-august-2c3bb0d1bb69

"The cybercriminal, after tentatively testing this exploit and managing to steal 10,000 USDC, then proceeded to quietly make 15 more transactions.
In this manner, the hacker was able to siphon approximately $7M, until our security team was able to trace, contain and stop the drain of funds. A total of 5251 users were affected, losing $1250 USD on average per user."

[moderator's note: consecutive posts merged]
legendary
Activity: 3080
Merit: 1353
August 11, 2021, 07:23:49 PM
https://decrypt.co/78270/poly-network-hacker-repays-2-1-million-says-ready-return-fund

Poly Network Hacker Repays Millions, Says ‘Ready to Return the Fund’
"The unknown Poly Network hacker has begun returning funds stolen from yesterday’s record-breaking exploit.

The attacker responsible for yesterday’s $600 million hack of decentralized finance (DeFi) interoperability protocol Poly Network sent nearly $5 million worth of crypto back to the project."


It was mentioned that the hacker's IP address and other information had been uncovered and maybe this is what scared them into returning those funds. Every centralized exchange will be monitoring their addresses and it would be difficult for them to cash out into fiat.

The hack probably destroys any confidence in Poly Network but at least investors have a chance to recover what they lost.

And the $3 million was frozen by Tether already.

Yeah, I do agree that it destroys Poloy Network face value because of this attack, so it might be hard for their platform to bounce back.

Anyhow, let's hope that the hackers will send back more, if there IP address is exposed, then sooner or later they can be track and identified and arrested.
sr. member
Activity: 1680
Merit: 379
Top Crypto Casino
August 11, 2021, 07:01:30 PM
https://decrypt.co/78270/poly-network-hacker-repays-2-1-million-says-ready-return-fund

Poly Network Hacker Repays Millions, Says ‘Ready to Return the Fund’
"The unknown Poly Network hacker has begun returning funds stolen from yesterday’s record-breaking exploit.

The attacker responsible for yesterday’s $600 million hack of decentralized finance (DeFi) interoperability protocol Poly Network sent nearly $5 million worth of crypto back to the project."


It was mentioned that the hacker's IP address and other information had been uncovered and maybe this is what scared them into returning those funds. Every centralized exchange will be monitoring their addresses and it would be difficult for them to cash out into fiat.

The hack probably destroys any confidence in Poly Network but at least investors have a chance to recover what they lost.
member
Activity: 633
Merit: 10
August 11, 2021, 04:59:33 PM
Poly Network Hacker Repays Millions, Says ‘Ready to Return the Fund’
"The unknown Poly Network hacker has begun returning funds stolen from yesterday’s record-breaking exploit.

The attacker responsible for yesterday’s $600 million hack of decentralized finance (DeFi) interoperability protocol Poly Network sent nearly $5 million worth of crypto back to the project."
I heard about these comments about the hackers returning the coins, but is it really true that they will be refunding all the coins that they hacked. I really doubt that, if the hackers wanted to help the network they would have done that and asked for a bounty to save the network for good and now the reputation of Poly Network is down the drains and what is the point of all this other than showing off if they really return all the funds.
hopefully they will did it , but with hundred millions someone will tempted with money. since the beginning hacker goals want to take money from network vulnerability that exposed and they have communication with developerst team. this is will make doubt they will send money back. actually with this skills , these hacker could earn  money from several project. they just need to exploit and report it so will get money legall.
hero member
Activity: 2814
Merit: 911
Have Fun )@@( Stay Safe
August 11, 2021, 04:44:15 PM
Poly Network Hacker Repays Millions, Says ‘Ready to Return the Fund’
"The unknown Poly Network hacker has begun returning funds stolen from yesterday’s record-breaking exploit.

The attacker responsible for yesterday’s $600 million hack of decentralized finance (DeFi) interoperability protocol Poly Network sent nearly $5 million worth of crypto back to the project."
I heard about these comments about the hackers returning the coins, but is it really true that they will be refunding all the coins that they hacked. I really doubt that, if the hackers wanted to help the network they would have done that and asked for a bounty to save the network for good and now the reputation of Poly Network is down the drains and what is the point of all this other than showing off if they really return all the funds.
member
Activity: 812
Merit: 10
https://hovr.site/
August 11, 2021, 03:14:52 PM
I just remembered some of these stupid hacks but kucoin was the one that hurts me the most As this mostly happens smart contracts have to be completely changed and team really super it the most and then sometimes or even all the time coins dumps like hell and investors take serious hit...I really hope there is a way for addressing refund or locking user account
legendary
Activity: 1932
Merit: 4602
August 11, 2021, 02:23:58 PM
https://decrypt.co/78270/poly-network-hacker-repays-2-1-million-says-ready-return-fund

Poly Network Hacker Repays Millions, Says ‘Ready to Return the Fund’
"The unknown Poly Network hacker has begun returning funds stolen from yesterday’s record-breaking exploit.

The attacker responsible for yesterday’s $600 million hack of decentralized finance (DeFi) interoperability protocol Poly Network sent nearly $5 million worth of crypto back to the project."
legendary
Activity: 2590
Merit: 1501
August 11, 2021, 03:40:03 AM
Yes, keeping funds in the pools of Defi projects using them for passive income becomes quite dangerous, the hacker left a message that he could withdraw much more, but did not do it and saved the project https://etherscan.io/tx/0x552bc0322d78c5648c5efa21d2daa2d0f14901ad4b15531f1ab5bbe5674de34f , another message from him that he was ready to return the stolen. https://etherscan.io/tx/0x7b6009ea08c868d7c5c336bf1bc30c33b87a0eedd59dac8c26e6a8551b20b68a

 
Ucy
sr. member
Activity: 2674
Merit: 403
Compare rates on different exchanges & swap.
August 10, 2021, 10:21:53 AM
https://decrypt.co/78163/polynetwork-suffers-record-breaking-600-3m-hack
PolyNetwork Suffers Record-Breaking $600.3 Million Hack
"PolyNetwork has suffered an exploit today. The attacker has made off with at least $600.3 million in stolen funds.

Multi-chain interoperability protocol Poly Network fell victim to an exploit today, resulting in the loss of roughly $600 million worth of various cryptocurrencies, the platform's developers revealed."
https://twitter.com/PolyNetwork2/status/1425073987164381196?



I read it is one of the largest hack, if not the largest so far.
People should be careful how they invest in  projects. In Crypto space, only put your funds in well decentralized, well tested and secured projects. It's a space that depends on the security of decentralization in place of traditional governments... You should demand true decentralization or don't invest atall.

Invest but don't gamble. 
  Will continue to emphasize on the importance of sticking to crypto ideals when you are in Crypto space, so we don't have too many regrets
legendary
Activity: 1932
Merit: 4602
August 10, 2021, 09:33:13 AM
https://decrypt.co/78163/polynetwork-suffers-record-breaking-600-3m-hack
PolyNetwork Suffers Record-Breaking $600.3 Million Hack
"PolyNetwork has suffered an exploit today. The attacker has made off with at least $600.3 million in stolen funds.

Multi-chain interoperability protocol Poly Network fell victim to an exploit today, resulting in the loss of roughly $600 million worth of various cryptocurrencies, the platform's developers revealed."
https://twitter.com/PolyNetwork2/status/1425073987164381196?
full member
Activity: 672
Merit: 101
www.cd3d.app
August 08, 2021, 01:32:39 AM
Personally I was a victim of one defi hack. I lost about 100$. It was a farm on Polygon called Polyyeld. I invested in a pool USDC-YELD and at first everything was ok and I wish I had taken my money away when I was in profit. But then I lost and decided to hodl. And some time later they launched a layer 2, as a result a vulnerability appeared there. Then it was a hack and somebody made up a huge amount of native tokens.
jr. member
Activity: 95
Merit: 2
August 05, 2021, 05:29:55 PM
This kind of stuff is sad, people put their trust and hard earned money into projects and hackers take advantage by hacking these projects. Although it’s the fault of the person putting money into non secure projects, it’s still sad. It’s sad that we let these shitty projects have so much power and don’t just shut them down as a whole. Projects like BSC, NEAR, DOT are secure and you won’t get all of your money stolen if you invest in them. There are many others that are secure but there are also many that aren’t so as an investor you have to be careful where you put your money because sadly this is part of the game.
full member
Activity: 784
Merit: 100
August 05, 2021, 04:23:54 PM
It's really unfortunate when projects which struggled hard to reach a certain point got hacked and loose all there  worked for, they are not the only ones affected, investors which believed in such project also loose as well because definitely when a project is hacked the next thing which take place is a rug pull which makes price of the coin dip so badly, well this is more reason projects should choose a blockchain which it's security can't be bridged, e.g polkadot, solana, and the most recommended is Near protocol.
jr. member
Activity: 840
Merit: 6
August 04, 2021, 11:49:24 PM
So far there have been no hacks or exit scams on NEAR protocol, it's a trustworthy community.
sr. member
Activity: 1680
Merit: 379
Top Crypto Casino
August 04, 2021, 09:32:43 PM
Popsicle Finance- 25M

https://decrypt.co/77620/defi-protocol-popsicle-finance-hacked-25-million
A bug in Popsicle Finance allowed hackers to drain one of the DeFi protocol’s key products for roughly $25 million.
"Popsicle Finance, a multi-chain yield-generating crypto project, has melted under the heat of a new exploit.

The $25 million heist was revealed by security researcher Mudit Gupta, who said “the hack was complex but the bug was simple.” In a Twitter thread, Gupta also explained how he reported a similar bug in another protocol, adding that the error “has been exploited in like a dozen other protocols already.”"

https://twitter.com/Mudit__Gupta/status/1422797923037814786

I hadn't heard of this project before but it seems that yield optimizers are a big target for attackers. PancakeBunny suffered one of the biggest losses earlier this year through a flash loan attack and then a few months later they were attacked again on the Polygon version of PancakeBunny. The benefit of using these optimizers is in the extra rewards they give you by going through their platform but the complexity of their contracts makes them more susceptible to exploits.
legendary
Activity: 2590
Merit: 1501
August 04, 2021, 09:07:28 AM
Popsicle Finance- 25M

https://decrypt.co/77620/defi-protocol-popsicle-finance-hacked-25-million
A bug in Popsicle Finance allowed hackers to drain one of the DeFi protocol’s key products for roughly $25 million.
"Popsicle Finance, a multi-chain yield-generating crypto project, has melted under the heat of a new exploit.

The $25 million heist was revealed by security researcher Mudit Gupta, who said “the hack was complex but the bug was simple.” In a Twitter thread, Gupta also explained how he reported a similar bug in another protocol, adding that the error “has been exploited in like a dozen other protocols already.”"

https://twitter.com/Mudit__Gupta/status/1422797923037814786

The Popsicle Finance team offered the hacker who carried out the attack a reward, or rather a ransom for the return of the stolen funds in the amount of $1,000,000 in any currency at his request, I don't know how much this can help.

Quote
So, now what?
First of all, we would like to address the black hat hacker. Although this may be a long shot we are offering a completely clean $1,000,000 bounty paid in whatever currency he/she likes if funds are returned
.
legendary
Activity: 2310
Merit: 1422
August 04, 2021, 05:29:21 AM
During the last few weeks I was wrapping my head around finding all the DeFi hacks happened but google wasn't really helping. I said to myself, jeez why don't I go to the forum  and search there.
Thanks a lot zasad@ this is what I was looking for!
I'll contribute to this thread in case I'll find some more news.  Wink
legendary
Activity: 1932
Merit: 4602
August 04, 2021, 05:08:45 AM
Popsicle Finance- 25M

https://decrypt.co/77620/defi-protocol-popsicle-finance-hacked-25-million
A bug in Popsicle Finance allowed hackers to drain one of the DeFi protocol’s key products for roughly $25 million.
"Popsicle Finance, a multi-chain yield-generating crypto project, has melted under the heat of a new exploit.

The $25 million heist was revealed by security researcher Mudit Gupta, who said “the hack was complex but the bug was simple.” In a Twitter thread, Gupta also explained how he reported a similar bug in another protocol, adding that the error “has been exploited in like a dozen other protocols already.”"

https://twitter.com/Mudit__Gupta/status/1422797923037814786
legendary
Activity: 2590
Merit: 1501
July 23, 2021, 03:58:42 AM
A new hacker attack, already the second in a week, on THORChain today led to a loss of $8 million, as the developers explained, the hacker said that he could have spent more( ETH,BTC,LYC, BNB and other BEP20s tokens), but eventually requested a reward of 10% of the amount of assets under potential threat in exchange for a critical error message.

full member
Activity: 1428
Merit: 120
Sugars.zone | DatingFi - Earn for Posting
July 16, 2021, 10:11:43 AM
THORChain lost, according to preliminary estimates 4,000 ETH about $8 million as a result of a hacker attack. Originally reported loss of 13,000 ETH. https://www.runebase.org/news/thorchain-suffers-exploit

They promise to inform the affected users about the details and compensation in the near future. https://twitter.com/THORChain/status/1415813696857591813

UPD: Official update from the THORChain team in the telegram channel https://t.me/thorchain_org

MCCN Exploit Update

Loss:
Approx ~$4.9mm USD was taken in the exploit, far less than the intitial figures posted earlier. A granular breakdown is being developed by the community.

Method:
ETH Bifrost was tricked using a custom wrapper to read a deposit amount of 200 when it was actually zero. More details will be provided in the upcoming post mortem blog.

Discovery:
The issue was discovered by a community dev and anonymous nodes voluntarily used make halt command to stop their nodes. Once more than 1/3rd nodes had been halted, the network itself was halted. This was a decentralized action taken by node operators to protect the network.

Recovery:
1. Release the patch & restart the network > block pending outbounds > restore solvency.
2. Donate funds back to the ETH pool to restore lost funds to LPs
3. Release auto-solvency checker as a future preventative measure
4. Continue working with security firms to audit.

This is a disappointing moment for all, but LPs and Nodes should be unaffected after all is recovered (the funds will be restored). The network will be stronger and more resilient.

The THORChain community appreciate the inflow of support. More info to come in due course.
Yes, exactly it happened and was officially announced from their team. Their big response.
This is unfortunate because not only does it cause loss to investors and the project's confidence, but it also covers this negativity on the entire market, which is already in a bad state.
Quote
Safe Dollar - $250 000

https://t.me/safedollarannouncements/42
SafeDollar has been under attack. We have paused activities on SafeDollar and investigating the matter.
I still haven't forgotten the crazy moment with Titan, even though they later announced their mistake but it did a lot of damage. I've given up on polygons for now.
Pages:
Jump to: