Skip to main content

Hackers steal $8 million worth of cryptocurrencies from DeFi Protocol bZx

 


  • The hackers stole over $8 million worth of crypto funds due to a vulnerability found in the bZx system.
  • The bZx protocol suffered its first attack this year, as a hacker siphoned $1 million from the system.
  • In each of the first attacks, the hacker used different methods to steal funds from the Defi lending protocol.

Hackers were able to infiltrate the DeFi lending protocol bZx and stole more than $8 million worth of cryptocurrencies. This is not the first time the DeFi protocol has been attacked this year.

This time, the hackers were 8 times more potent than the previous attack on the margin and leverage-based trading and lending platform. The hackers leveraged a duplication vulnerability that gave them access to siphon USDCUSDTETH, and LINK, with a combined worth of over $8 million.

Anton Bukov, a team member of the bZx group shared a thread on Twitter to admit that the firm was hit by another attack. He also said the hacking was initiated due to the fault in the line of code for a smart contract. The hacking was successful after the hackers initiated the iToken transactions to siphon ETH.

How the attack occurred

When researchers delved deeper to find out how the hackers were able to infiltrate the DeFi protocol again, the report showed that there was a vulnerability in the “transferfrom0 protocol”, which allowed the successful transfer of ERC20 between protocols.

This made it easier to initiate the function when creating and transferring the iToken, giving the hackers the avenue to increase their balance. The hackers were able to initiate a transfer function using the same form & to address of the main function. Immediately after that, they used an InternalTransferFrom function with a single argument, allowing the lines to code faulty.

Subsequently, the hackers were able to increase the balance of –balancesTo while reducing the –balancesFrom, based on the report. After stealing $8 million from the DeFi protocol, the bZx hackers immediately patched the faulty code. After code coding companies Peckshield and Certik approved, the DeFi lending protocol decided to patch the code.

This is not the first time bZx has been attacked

With this recent spate of attacks, it seems bZx is facing a hard time this year. Based on an earlier report, a hacker successfully stole $1 million worth of ETH from the portal in two successful attempts in February.

In the first attack that occurred on February 14, the hacker made use of different methods in the attacks. First, the hacker took 10,000 ETH from dYdX and took a 112 wBTC loan on compound using 5,500 ETH.

In the second attack, which occurred four days later, the attacker drained the system off $600,000 by leveraging ‘oracle manipulation’ to cheat the system.

Source: invezz.com

Comments

Post a Comment

Contact us

Name

Email *

Message *

Popular posts from this blog

Cryptocurrencies Adding to the Safety and Security in the UK Gambling Industry

These are exciting times for the UK gambling industry. The impact of internet technology is now being felt with online gambling now controlling the industry.  The adoption of cutting-edge technology is reasonable for the boom in the industry. From live casinos, mobile apps to artificial intelligence, incredible trends continue shaping the gambling industry. However, it is the rise of cryptocurrency casinos that seeks to redefine UK gambling.  Many operators now include crypto coins such as bitcoin, Ethereum and Litecoin as part of their banking methods. Others offer exclusive bitcoin payments and promotions based on digital tokens. This revolutionary trend has a huge impact due to enhanced safety and security on these platforms. Players looking for peace of mind when playing online now opt to use cryptocurrencies. This post looks at how cryptos guarantee the safety and security of players at online casinos. How Cryptocurrency Gambling Works There’s a lot of talk about cryptocurrency,
Post a Comment
Read more

Will Solana (SOL) Be the Shining Star of the Bull Market?

About 250,000 to 700,000 SOL have been sold daily by FTX for the last three weeks. SOL’s price jumped above $60, as GSOL’s premium also increased. While the price may retrace, it may not take long before SOL hits $70. Despite being a notable casualty of the FTX contagion in 2022, Solana (SOL) has defied all odds in 2023, as the price continues to outshine its peers. In the last 30 days, the value of SOL has increased by 180%, rising as high as $62 on November 11. However, the rising price of SOL is not the only interesting thing the token has shown by the token. For a token that was once described as dead, it has shown tremendous strength. Coin Edition came to this conclusion because of a post by trader Bluntz Capital. The Big Players Are Here According to Bluntz, FTX, after getting the go-ahead to liquidate its assets, has been selling around 250,000 to 700,000 daily for the last three weeks. Regardless of the sales, SOL has failed to nosedive. Rather, the price has chosen the upside
Post a Comment
Read more

Terra Classic Community Passes Major Constructive Proposal, LUNC And USTC To $1?

  The Terra Luna Classic community has passed another key proposal as they prepare for a revival of Terra Luna Classic (LUNC) and repeg USTC stablecoin to $1.  The proposal aimed at having a guideline for a pay-per-job approach on the Terra Classic chain as core developer L1TF goes into maintenance mode for Q4. Meanwhile, the community is also collaborating on other fronts to keep LUNC and USTC above key support levels as traders started booking profits amid the latest pullback in the crypto market. Terra Luna Classic Passes Pay Per Job Proposal Proposal 11889 “Pay-per-job and governance-ruled Job List” has passed successfully. The proposal deemed the monthly model of roadmap and payment planning as suboptimal and plans to switch to a pay-per-job model. The proposal has received 91.99% “Yes” votes, with others mostly voting “Abstain”. The community believes it will optimize compensation structure, provide flexibility and transparency, boost community engagement, and risk mitigation. A
Post a Comment
Read more