The Ankr DeFi protocol was hacked, as a result, a huge number of aBNBc tokens were issued by the attackers, after which its price fell to zero, losses are estimated at about $15 million.
https://twitter.com/PeckShieldAlert/status/1598527823224111104
https://twitter.com/ankr/status/1598503332477280256
The project team confirms the hack and declares that the users' funds are safe, and will be reimbursed by the reissue of aBNBc based on a snapshot of users' wallets.
https://twitter.com/ankr/status/1598570449390260226
Topic: DeFi hacks [history] - page 9. (Read 19555 times)
https://twitter.com/boshen1011/status/1595265219898789888?
"@boshen1011
A total of 42M worth of crypto assets, including 38M in USDC were stolen from my personal wallet ending in 894 in the early morning of November 10 EST.
The stolen assets are personal funds and do not affect on Fenbushi related entities."
Bo Shen is the founder of Fenbushi Capital
"@boshen1011
A total of 42M worth of crypto assets, including 38M in USDC were stolen from my personal wallet ending in 894 in the early morning of November 10 EST.
The stolen assets are personal funds and do not affect on Fenbushi related entities."
Bo Shen is the founder of Fenbushi Capital
https://beincrypto.com/dfx-finance-hacked-exploiter-drains-4m-funnels-funds-tornado-cash/
DFX Finance Hacked, Exploiter Drains $4M And Funnels Funds to Tornado Cash
DeFi protocol DFX Finance has been hacked with the attacker stealing about $4 million.
The team has paused all contracts and will issue a post-mortem soon.
DeFi hacks have been common in 2022 and account for the majority of security incidents.
____
DeFi project Flare on hacked. $17.9 million
https://forklog.com/news/defi-proekt-flare-na-bnb-chain-vzlomali-na-17-9-mln
https://twitter.com/peckshield/status/1591831184526516226?
https://twitter.com/peckshield/status/1591833722621689856?
"The stolen funds/loss is about ~$17M and 4,000 BNB of them are being washed via
@TornadoCash
https://bscscan.com/address/0xe55d77f74ea9335d3a83a673f83f38527a68eb20 "
https://twitter.com/peckshield/status/1591837070926151680?
"It should be rugged with the 3.9B $Flare by calling withdrawProfit() of an unverified contract: https://bscscan.com/tx/0xa09135020bb1271ff684db407783a52163c31c7255955cec1e83fc68a751c027"
DFX Finance Hacked, Exploiter Drains $4M And Funnels Funds to Tornado Cash
DeFi protocol DFX Finance has been hacked with the attacker stealing about $4 million.
The team has paused all contracts and will issue a post-mortem soon.
DeFi hacks have been common in 2022 and account for the majority of security incidents.
____
DeFi project Flare on hacked. $17.9 million
https://forklog.com/news/defi-proekt-flare-na-bnb-chain-vzlomali-na-17-9-mln
https://twitter.com/peckshield/status/1591831184526516226?
https://twitter.com/peckshield/status/1591833722621689856?
"The stolen funds/loss is about ~$17M and 4,000 BNB of them are being washed via
@TornadoCash
https://bscscan.com/address/0xe55d77f74ea9335d3a83a673f83f38527a68eb20 "
https://twitter.com/peckshield/status/1591837070926151680?
"It should be rugged with the 3.9B $Flare by calling withdrawProfit() of an unverified contract: https://bscscan.com/tx/0xa09135020bb1271ff684db407783a52163c31c7255955cec1e83fc68a751c027"
https://cointelegraph.com/news/deribit-hackers-move-stolen-ether-to-tornado-cash-crypto-mixer
Deribit hackers move stolen Ether to Tornado Cash crypto mixer
"The Deribit hot wallet hacker has transferred 1,610 ETH (over $2.5 million) to Tornado Cash, according to data from the Ethereum block explorer Etherscan.
In the aftermath of the $28 million Deribit hack, the unknown exploiter is moving stolen funds using the decentralized cryptocurrency mixer, Tornado Cash."
Deribit hackers move stolen Ether to Tornado Cash crypto mixer
"The Deribit hot wallet hacker has transferred 1,610 ETH (over $2.5 million) to Tornado Cash, according to data from the Ethereum block explorer Etherscan.
In the aftermath of the $28 million Deribit hack, the unknown exploiter is moving stolen funds using the decentralized cryptocurrency mixer, Tornado Cash."
DeFi Protocol Solend Struck by $1.26M Oracle Exploit
Solana-based decentralized finance (DeFi) protocol Solend has suffered an exploit in relation to pricing oracles, resulting in $1.26 million in bad debt.
The exploit was centered around the hubble stablecoin (USDH) and affected the Stable, Coin98, and Kamino lending pools, according to a tweet by Solend.
A pricing oracle is a source of data that provides asset values for blockchains. Hacks and exploits related to decentralized finance, which is a form of lending that takes place without intermediaries, have surged over the past month. Security firm Chainalysis reported that $718 million had been stolen in the first two weeks of October.
https://www.coindesk.com/business/2022/11/02/defi-protocol-solend-struck-by-126m-oracle-exploit/
Solana-based decentralized finance (DeFi) protocol Solend has suffered an exploit in relation to pricing oracles, resulting in $1.26 million in bad debt.
The exploit was centered around the hubble stablecoin (USDH) and affected the Stable, Coin98, and Kamino lending pools, according to a tweet by Solend.
A pricing oracle is a source of data that provides asset values for blockchains. Hacks and exploits related to decentralized finance, which is a form of lending that takes place without intermediaries, have surged over the past month. Security firm Chainalysis reported that $718 million had been stolen in the first two weeks of October.
https://www.coindesk.com/business/2022/11/02/defi-protocol-solend-struck-by-126m-oracle-exploit/
Gala Games lost ~ 26% in price amid fears of hacking or fraud after one address through DEX PancakeSwap issued ~56 billion pGALA, which is the equivalent of $2.2 billion.
https://twitter.com/lookonchain/status/1588352050642837505
However, hackers managed to implement tokens for ~13,000 BNB, Huobi announced the temporary delisting of the GALA token, Binance temporarily suspended the input and output of the GALA token.
https://twitter.com/peckshield/status/1588273496819634176
Everything happened as assumed due to an incorrect configuration of the bridge used by Gala Games to interact with the BNB Smart Chain.
https://twitter.com/pNetworkDeFi/status/1588266897061031936
https://twitter.com/lookonchain/status/1588352050642837505
However, hackers managed to implement tokens for ~13,000 BNB, Huobi announced the temporary delisting of the GALA token, Binance temporarily suspended the input and output of the GALA token.
https://twitter.com/peckshield/status/1588273496819634176
Everything happened as assumed due to an incorrect configuration of the bridge used by Gala Games to interact with the BNB Smart Chain.
https://twitter.com/pNetworkDeFi/status/1588266897061031936
https://cointelegraph.com/news/deribit-crypto-exchange-halts-withdrawals-amid-28m-hot-wallet-hack@
"Deribit crypto exchange halts withdrawals amid $28M hot wallet hack
Crypto exchange Deribit halted withdrawals following a hot wallet hack where hackers got away with $28 million in stolen funds.
The exchange emphasized that client funds are safe as losses are covered by Deribit’s reserves, stating:
“Client assets, Fireblocks or any of the cold storage addresses are not affected. It's company procedure to keep 99% of our user funds in cold storage to limit the impact of these type of events.”
"
"Deribit crypto exchange halts withdrawals amid $28M hot wallet hack
Crypto exchange Deribit halted withdrawals following a hot wallet hack where hackers got away with $28 million in stolen funds.
The exchange emphasized that client funds are safe as losses are covered by Deribit’s reserves, stating:
“Client assets, Fireblocks or any of the cold storage addresses are not affected. It's company procedure to keep 99% of our user funds in cold storage to limit the impact of these type of events.”
"
The decentralized Rubic exchange lost more than $1.2 million (34 million RBC and BRBC tokens) after a hacker managed to compromise the wallet of the exchange administrator by obtaining private keys from him, the wallet managed the RBC/BRBC bridge and the rewards for staking.
https://twitter.com/CryptoRubic/status/1587704548688367619
https://twitter.com/CryptoRubic/status/1587704548688367619
Dear the major hack or scams in defi are due to some reasons as let me explain one of the major reason. As you all know that in DeFi protocols and Apps the source codes are open source many of the scammer just copy code and make a few changes to create a new platform similar to previous one this happened with Dexs in early 2021 and 2022. It cause major scams and people gets trapped.
The Team Finance DeFi protocol project lost ~ $15.8 million in assets due to a vulnerability in the token migration function, which the hacker managed to detect and use to carry out the attack, he needed only 1.76 ETH.
https://twitter.com/peckshield/status/1585587858978623491
Hacker Transactions:
https://etherscan.io/tx/0xb2e3ea72d353da43a2ac9a8f1670fd16463ab370e563b9b5b26119b2601277ce
https://twitter.com/peckshield/status/1585587858978623491
Hacker Transactions:
https://etherscan.io/tx/0xb2e3ea72d353da43a2ac9a8f1670fd16463ab370e563b9b5b26119b2601277ce
Decentralized exchange QuickSwap exploited for $220K, plans to close lending markets
https://www.theblock.co/post/179333/decentralized-exchange-quickswap-exploited-for-220k-plans-to-close-lending-markets
"QuickSwap DEX was exploited for $200,000.
The exploit used flash loans to attack a vulnerability with the Curve Oracle.
QuickSwap, a decentralized exchange on Polygon, was exploited for $220,000, according to the exchange."
https://www.theblock.co/post/179333/decentralized-exchange-quickswap-exploited-for-220k-plans-to-close-lending-markets
"QuickSwap DEX was exploited for $200,000.
The exploit used flash loans to attack a vulnerability with the Curve Oracle.
QuickSwap, a decentralized exchange on Polygon, was exploited for $220,000, according to the exchange."
Some stats from quarter 3, 2022 for the generations to come 😊
Elliptic says that DeFi continues to be the key target for exploits as compared to CeFi. DeFi represents 98.8% of the total losses, while CeFi represents 1.2% of the total losses.
Elliptic says that DeFi continues to be the key target for exploits as compared to CeFi. DeFi represents 98.8% of the total losses, while CeFi represents 1.2% of the total losses.
Celo Protocol Moola Market Loses Over $10M in Market Manipulation Attack
https://www.coindesk.com/markets/2022/10/19/celo-protocol-moola-market-loses-over-10m-in-market-manipulation-attack/
"Celo-based lending and borrowing protocol Moola Market had over $10 million worth of tokens stolen, and later returned, Wednesday morning after a market manipulation attack.
The exploit was the second of its kind in the last few weeks, with the attackers manipulating the prices of Moola’s native MOO tokens to borrow collateral against their positions – effectively draining the protocol."
https://www.coindesk.com/markets/2022/10/19/celo-protocol-moola-market-loses-over-10m-in-market-manipulation-attack/
"Celo-based lending and borrowing protocol Moola Market had over $10 million worth of tokens stolen, and later returned, Wednesday morning after a market manipulation attack.
The exploit was the second of its kind in the last few weeks, with the attackers manipulating the prices of Moola’s native MOO tokens to borrow collateral against their positions – effectively draining the protocol."
The latest data analytically indicate a loss of approximately $8.4 million in assets of several tokens 8.8M CELO ($6.5M), 765k cEUR ($0.7M), 1.8M MOO ($0.6M) and 644k cUSD https://twitter.com/FrankResearcher/status/1582448720985014273 , but this of course does not affect anything another vulnerability of the Defi protocol was used
Defi projects are the most hacked in a very short period of time.So many coins have been hacked in such a short period of time which is really sad.But I invested in two Defi platforms and now they are worthless. In fact, such projects come and leave people in a very confused state and people are completely out of the hands of various investments Destroys trust. People are afraid to invest only because of these reasons
Celo Protocol Moola Market Loses Over $10M in Market Manipulation Attack
https://www.coindesk.com/markets/2022/10/19/celo-protocol-moola-market-loses-over-10m-in-market-manipulation-attack/
"Celo-based lending and borrowing protocol Moola Market had over $10 million worth of tokens stolen, and later returned, Wednesday morning after a market manipulation attack.
The exploit was the second of its kind in the last few weeks, with the attackers manipulating the prices of Moola’s native MOO tokens to borrow collateral against their positions – effectively draining the protocol."
https://www.coindesk.com/markets/2022/10/19/celo-protocol-moola-market-loses-over-10m-in-market-manipulation-attack/
"Celo-based lending and borrowing protocol Moola Market had over $10 million worth of tokens stolen, and later returned, Wednesday morning after a market manipulation attack.
The exploit was the second of its kind in the last few weeks, with the attackers manipulating the prices of Moola’s native MOO tokens to borrow collateral against their positions – effectively draining the protocol."
Mango Markets is due to complete the voting on October 15, according to the approval of the payment to the hacker in the amount of $47 million, already more than 98% of voting tokens approve the transaction.
By the way, under the terms of the deal with the hacker, it is stipulated that Mango Markets will not bring him to criminal responsibility.
This will be one of the largest payments to a hacker, if we consider that he spent $10 million on carrying out the attack, then his catch will be $37 million.
Source: https://cointelegraph.com/news/mango-market-s-dao-forum-set-to-approve-47m-settlement-with-hacker
By the way, under the terms of the deal with the hacker, it is stipulated that Mango Markets will not bring him to criminal responsibility.
This will be one of the largest payments to a hacker, if we consider that he spent $10 million on carrying out the attack, then his catch will be $37 million.
Source: https://cointelegraph.com/news/mango-market-s-dao-forum-set-to-approve-47m-settlement-with-hacker
Chainalysis collected statistics on hacking this year, so for example, October 2022 has not ended yet, but it has already become the largest month in the history of hacking activity for the entire year. So far this month, $718 million has been stolen from the DeFi protocols using 11 different hacks.
Cross-chain bridges are the main target for hackers: in October, 3 bridges were hacked and almost $600 million was stolen, this is 82% of losses this month and 64% of losses for the whole year.
During this year, hackers earned more than $3 billion for 125 hacks.
Analysis of hacks shows that if cex was previously the target of hackers , then starting from 2021 their main goal is Defi protocols.
Source: https://twitter.com/chainalysis/status/1580312153269374980
Cross-chain bridges are the main target for hackers: in October, 3 bridges were hacked and almost $600 million was stolen, this is 82% of losses this month and 64% of losses for the whole year.
During this year, hackers earned more than $3 billion for 125 hacks.
Analysis of hacks shows that if cex was previously the target of hackers , then starting from 2021 their main goal is Defi protocols.
Source: https://twitter.com/chainalysis/status/1580312153269374980
https://www.bloomberg.com/news/articles/2022-10-12/crypto-platform-mango-hit-by-latest-hack-in-digital-asset-sector#
Crypto Attack Swipes $100 Million From DeFi Service Mango
"Incident comes just days after $100 million Binance Coin hack
Mango says attackers indicated a willingness to communicate
An attacker spirited away about $100 million from decentralized finance provider Mango by manipulating the price of its token in an exploit that wiped out depositors on the crypto platform.
The heist began with two accounts funded with the stablecoin USD Coin, the platform said Wednesday on Twitter. The accounts took large positions in Mango perpetual futures, causing the price of the Mango token to spike."
____
https://www.theblock.co/post/176299/hacker-steals-2-3-million-from-templedao
Hacker steals $2.3 million from TempleDAO
Crypto Attack Swipes $100 Million From DeFi Service Mango
"Incident comes just days after $100 million Binance Coin hack
Mango says attackers indicated a willingness to communicate
An attacker spirited away about $100 million from decentralized finance provider Mango by manipulating the price of its token in an exploit that wiped out depositors on the crypto platform.
The heist began with two accounts funded with the stablecoin USD Coin, the platform said Wednesday on Twitter. The accounts took large positions in Mango perpetual futures, causing the price of the Mango token to spike."
____
https://www.theblock.co/post/176299/hacker-steals-2-3-million-from-templedao
Hacker steals $2.3 million from TempleDAO
Little by little, funds are being refunded to dex Transit Swap users affected by the hacker, who returned 6,500 BNB and promises to return another 3,500 BNB later for a reward of 2,500 BNB. Such an agreement was reached by the Transit Swap team as a result of negotiations with the hacker, who previously returned most of the stolen.
https://medium.com/@TransitSwap/updates-about-transitfinance-317f4fe67931
https://medium.com/@TransitSwap/updates-about-transitfinance-317f4fe67931
BNB BRIDGE - REKT $80M
https://rekt.news/bnb-bridge-rekt/
"2M BNB stolen in a hack as complex as Binance’s naming system.
BSC Token Hub, the BNB bridge between the old Binance Beacon Chain and BSC, now BNB Chain… was exploited into minting two lots of 1M BNB directly to the hacker’s address."
BNB Chain Resumes Activity After 2 Million Token Exploit
https://decrypt.co/111448/bnb-chain-resumes-activity-2-million-token-exploit
this is the latest, I'm really shocked about BNBChain getting hacked when Binance is also very massive working on the project, https://rekt.news/bnb-bridge-rekt/
"2M BNB stolen in a hack as complex as Binance’s naming system.
BSC Token Hub, the BNB bridge between the old Binance Beacon Chain and BSC, now BNB Chain… was exploited into minting two lots of 1M BNB directly to the hacker’s address."
BNB Chain Resumes Activity After 2 Million Token Exploit
https://decrypt.co/111448/bnb-chain-resumes-activity-2-million-token-exploit
and of course this is like a blow to CZ, because it's a very large number, reportedly the BNBChain network will be paused for the next few hours,
is it when is this back to normal again?.
Jump to: