1. BITBILIHome
  2. Article

Poly Network temporarily halts services after another hack

164 views

TL;DR Breakdown

  • The exploit involved manipulating a smart contract function on the platform’s cross-chain bridge protocol, leading Poly Network to temporarily suspend its services. 
  • Although the exact amount stolen in the attack was not specified by Poly Network, it was reported that the hacker transferred at least $5 million worth of crypto.
  • Binance CEO Changpeng Zhao reassured customers that the attack would not affect Binance users, as they do not support deposits from the Poly Network.

Description

The cross-chain bridge platform Poly Network fell victim to a major attack, resulting in a hacker being able to generate billions of tokens for profit on July 2. The exploit involved manipulating a smart contract function on the platform’s cross-chain bridge protocol, leading Poly Network to temporarily suspend its services. The attack affected 57 different … Read more

The cross-chain bridge platform Poly Network fell victim to a major attack, resulting in a hacker being able to generate billions of tokens for profit on July 2. The exploit involved manipulating a smart contract function on the platform’s cross-chain bridge protocol, leading Poly Network to temporarily suspend its services. The attack affected 57 different crypto assets across 10 blockchains, including Ethereum, BNB Chain, Polygon, Avalanche, Heco, OKx, and Metis.

Although Poly Network did not specify the exact amount stolen in the attack, it was reported that the hacker transferred at least $5 million worth of cryptocurrencies. In response to the incident, Poly Network initiated communication with centralized exchanges and law enforcement agencies, seeking their assistance in resolving the issue. The project team also advised other project teams and token holders to withdraw liquidity and unlock their LP tokens.

According to a DeFi security analyst, the exploit was a result of a smart contract vulnerability that allowed the hacker to craft a malicious parameter containing a fake validator signature and block header. This parameter was accepted by the smart contract, bypassing the verification process and enabling the hacker to issue tokens from Poly Network’s Ethereum pool to their address on other chains, such as Metis, BNB Chain, and Polygon. This process was repeated across multiple chains, resulting in the accumulation of a significant token stash.

Poly Network hack

At one point, the hacker’s wallet held approximately $42 billion worth of tokens, but they were only able to convert and steal a fraction of that amount. The attack has been called the “34 billion Poly Network hack” by blockchain security solutions provider Dedaub, highlighting weaknesses in the protocol’s multi-signature arrangement. Dedaub discovered that the private keys to the compromised addresses were compromised, emphasizing the need for more robust security measures.

Dedaub also noted that the attack was not complex and did not exploit any logic bugs. However, Poly Network’s response to the attack was criticized for being slow, taking seven hours, and resulting in a cost of $5.5 million in stolen crypto. Fortunately, a lack of liquidity in many of the tokens prevented further losses.

Binance CEO Changpeng Zhao reassured customers that the attack would not affect Binance users, as they do not support deposits from the Poly Network. This incident marks the second major attack on Poly Network, with the previous one occurring in August 2021, where hackers linked to the North Korean hacking collective, the Lazarus Group, made off with over $600 million.

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Poly Network temporarily halts services after another hack

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年7月5日 05:38
Next 2023年7月5日 08:10

Related articles

  • Decentralized Payment Innovation: Cardano’s Hydra Pay Teaser

    TL;DR Breakdown Cardano’s Hydra Pay is an upcoming decentralized payment service powered by the Hydra Head protocol, offering near-instant settlement and scalability enhancements on the Cardano L2 network. Hydra Pay has the potential to transform micropayments within the Web 3.0 world, positioning Cardano as a strong competitor in the blockchain industry. Description The Cardano community is abuzz with anticipation as developers on the ADA protocol tease an upcoming decentralized payment service. This innovative solution, named Hydra Pay, is powered by Cardano’s layer-2 solution, Hydra Head, and is expected to be compatible with Web 3.0 wallets on the network. With the potential for near-instant settlement and scalability enhancements, … Read more The Cardano community is abuzz with anticipation as developers on the ADA protocol tease an upcoming decentralized payment service. This innovative solution, named Hydra Pay, is powered by Cardano’s layer-2 solution, Hydra Head, and is expected to be compatible with Web 3.0 wallets on the network. With the potential for near-instant settlement and scalability enhancements, Hydra Pay could revolutionize the world of micropayments and position Cardano as a key player…

    Article 2023年7月10日

  • Winklevoss Presents “Final Offer” in Genesis Crypto Bankruptcy Proceedings

    TL;DR Breakdown Cameron Winklevoss, the co-founder of Gemini Trust Co., presents a “final offer” in the bankruptcy restructuring of Genesis Global Holdco, setting the minimum terms for creditors’ acceptance. The proposal includes forbearance payments, two debt tranches, and a distribution plan for sale proceeds, aiming to resolve the complex proceedings. Description In the ongoing bankruptcy restructuring of digital-asset lender Genesis Global Holdco, billionaire Cameron Winklevoss, co-founder of Gemini Trust Co., has put forth what he calls a “best and final offer.” Winklevoss took to social media to share the proposal, emphasizing that it serves as the minimum acceptable terms for the creditors involved. With the deadline … Read more In the ongoing bankruptcy restructuring of digital-asset lender Genesis Global Holdco, billionaire Cameron Winklevoss, co-founder of Gemini Trust Co., has put forth what he calls a “best and final offer.” Winklevoss took to social media to share the proposal, emphasizing that it serves as the minimum acceptable terms for the creditors involved. With the deadline set for July 6, the offer aims to bring the protracted negotiations to a close. The…

    Article 2023年7月6日

  • Chinese regulators meet global investors to boost market confidence amid economic concerns

    TL;DR Breakdown Chinese regulators hold a rare meeting with global venture capital and private equity firms to boost market confidence amid concerns over the country’s economic recovery. Discussions centered around measures to facilitate global investment, including expediting overseas IPO registrations and relaxing merger and acquisition rules. Tensions with the US have impacted investor interest in China, a crackdown on the private sector, and a weakened economy, prompting calls for concrete actions from the government to address uncertainties. Description Chinese regulators recently engaged in a rare meeting with global venture capital and private equity firms on Friday to address concerns and bolster market confidence in the country’s economic recovery. Led by China Securities Regulatory Commission (CSRC) Vice Chairman Fang Xinghai, the meeting aimed to discuss measures to ensure continued global investment in China, particularly … Read more Chinese regulators recently engaged in a rare meeting with global venture capital and private equity firms on Friday to address concerns and bolster market confidence in the country’s economic recovery. Led by China Securities Regulatory Commission (CSRC) Vice Chairman Fang Xinghai, the meeting aimed…

    Article 2023年7月25日

  • Celsius Network strikes key settlements to return customer assets

    TL;DR Breakdown Celsius Network has reached settlements potentially enabling asset return to customers and bankruptcy conclusion. The settlements address customer fraud claims and disputes between depositors and loan borrowers. Celsius’s reorganization plan proposes returning customer crypto and offering shares in a new entity overseeing bitcoin mining and other assets. Description Celsius Network has reached pivotal settlements that could potentially clear the path for court approval of its plan to return assets to its customers and conclude its bankruptcy, according to court filings on Friday. However, the settlements come after the company, one of the largest crypto firms catering to retail investors, filed for bankruptcy last … Read more Celsius Network has reached pivotal settlements that could potentially clear the path for court approval of its plan to return assets to its customers and conclude its bankruptcy, according to court filings on Friday. However, the settlements come after the company, one of the largest crypto firms catering to retail investors, filed for bankruptcy last year. As per the filings, one of the settlements resolves customer claims over allegations of fraud and…

    Article 2023年7月23日

  • Coinbase Announces Support for SUI Token Trading

    TL;DR Breakdown Coinbase supports SUI token trading: Coinbase, the leading US cryptocurrency exchange, has added support for the SUI token in its trading platform. SUI listed as an experimental token: The SUI token will be categorized as “Experimental” on Coinbase, which is reserved for new or low-volume cryptocurrencies. Coinbase, the largest cryptocurrency exchange in the United States, recently announced its support for the SUI token in its trading platform. The move is in line with Coinbase’s primary objective of offering credible crypto assets to its retail customers and boosting the use of Web3. According to the announcement, SUI will be included in the “Experimental” category, which is reserved for new or low-volume cryptocurrencies. Trading of SUI-USD pairs is set to begin after 9 AM PT on May 18, 2023, if sufficient liquidity requirements are met. Coinbase has been proactive in adding new tokens to its listing roadmap, with Osmosis (OSMO), a decentralized exchange (DEX) built for the Cosmos ecosystem, being the latest addition. The platform is currently awaiting approval for the listing. However, the announcement of SUI token trading has…

    Article 2023年5月19日
TOP