1. BITBILIHome
  2. Article

Hacker exploits vulnerability, drains $455,000 from DeFi protocol Arcadia Finance

14 views

TL;DR Breakdown

  • Hacker exploits code vulnerability in Arcadia Finance, draining approximately $455,000 from the DeFi protocol’s Ethereum and Optimism vaults.
  • The breach highlights the need for improved input validation and reentrancy protection in decentralized finance platforms.
  • The incident contributes to the growing number of cyber attacks in the crypto space, prompting concerns about security and the potential impact on the Optimism network’s revenue and future growth.

Description

Arcadia Finance, a noncustodial protocol supporting on-chain cross-margin accounts, fell victim to a cyber attack that resulted in the loss of approximately $455,000. However, the hacker exploited a code vulnerability, exposing a weakness in the platform’s validation mechanism. The vulnerability allowed unverified inputs to go unchecked, enabling the hacker to drain funds from Arcadia Finance’s … Read more

Arcadia Finance, a noncustodial protocol supporting on-chain cross-margin accounts, fell victim to a cyber attack that resulted in the loss of approximately $455,000. However, the hacker exploited a code vulnerability, exposing a weakness in the platform’s validation mechanism. The vulnerability allowed unverified inputs to go unchecked, enabling the hacker to drain funds from Arcadia Finance’s Ethereum (darcWETH) and Optimism (darcUSDC) vaults.

Code vulnerability leads to significant losses

The breach was first discovered by PeckShield, a prominent cybersecurity firm known for its expertise in the blockchain domain. PeckShield promptly alerted Arcadia Finance about the hack, emphasizing the lack of untrusted input validation as the primary cause of the exploit. Following PeckShield’s intimation, 

The perpetrator demonstrated a swift response by successfully transferring an estimated 179.3 ETH from the Optimism[OP] network. This sum was attained by utilizing a combination of 148 ETH, which had been bridged from the Ethereum network, and approximately 59,000 USDC that was swapped.

The stolen funds were laundered through Tornado Cash, a decentralized privacy solution for cryptocurrencies. However, the stolen tokens on the Ethereum network, valued at over $103,000 at the time of writing, remain parked in the suspected wallet address, awaiting further investigation.

Arcadia Finance acknowledged the breach and swiftly halted its contracts to prevent further loss of funds.

PeckShield also disclosed an additional vulnerability within Arcadia Finance’s code. This vulnerability, known as a lack of reentrancy protection, poses a severe risk to the protocol’s internal vault health check. If exploited, this vulnerability could have severe consequences for the platform.

The incident adds to the growing list of cyber attacks and exploits that have plagued the cryptocurrency space during the second quarter of 2023. A recent report by CertiK, a leading blockchain security company, revealed that a total of 212 security incidents occurred during the quarter, resulting in a staggering loss of $313,566,528 from Web3 protocols.

Defi Llama’s data reveals that Arcadia Finance’s TVL has taken a significant hit in the past few days due to the prevailing uncertainty surrounding the company.

Screenshot 2023 07 10 at 11.53.57 AMHacker exploits vulnerability, drains 5,000 from DeFi protocol Arcadia Finance
Arcadia Finance’s TVL declines. Source: DeFi Llama

Impact on Optimism network and future growth

The exploitation of Arcadia Finance affected the protocol and had implications for the broader Optimism network. Token Terminal’s data indicates that although the number of daily active users on Optimism experienced a robust growth rate of 3.9% over the past week, the platform’s revenue witnessed a significant decline. In just the last seven days, the revenue generated by Optimism plummeted by 52.6%.

This decline in revenue raises concerns about the long-term growth prospects of the Optimism network. Moreover, the OP token, which is closely associated with Optimism, has experienced a substantial decline in price over the past month. Additionally, the velocity of OP token trading has diminished, indicating a decrease in trading activity. It is important to note that the OP token was trading at $1.18 at the time of writing. 

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Hacker exploits vulnerability, drains $455,000 from DeFi protocol Arcadia Finance

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年7月11日 03:33
Next 2023年7月11日 04:44

Related articles

  • Steadefi hackers successfully launder $185K in ETH through TornadoCash 

    TL;DR Breakdown Steadefi hackers sent $185K of stolen Ethereum to TornadoCash mixer after exploiting the DeFi platform’s weaknesses. The hack drained over $334K from Steadefi last week, with total losses topping $1.14 million. By laundering funds through TornadoCash, the attackers are trying to obfuscate the money trail and cash out undetected. Description Steadefi, the decentralized finance (DeFi) platform hit by a devastating exploit last week, has observed hackers laundering some of the stolen funds through privacy protocol TornadoCash. Blockchain security firm CertiK Alert revealed that an Ethereum account linked to the Steadefi hack deposited 100 ETH worth $185,000 into TornadoCash on August 9th. This transaction was flagged … Read more Steadefi, the decentralized finance (DeFi) platform hit by a devastating exploit last week, has observed hackers laundering some of the stolen funds through privacy protocol TornadoCash. Blockchain security firm CertiK Alert revealed that an Ethereum account linked to the Steadefi hack deposited 100 ETH worth $185,000 into TornadoCash on August 9th. This transaction was flagged as being connected to the attack that drained over $334,000 from Steadefi on August 7th….

    Article 2023年8月14日

  • OpenAI CEO identifies Israel’s impact in risk mitigation

    TL;DR Breakdown Sam Altman, CEO of OpenAI, highlights Israel’s vital role in mitigating risks from AI. Israel is recognized for its advanced machine learning systems and AI expertise. Altman assures job security amidst AI automation and growth, with roles evolving over time. Artificial Intelligence (AI) continues to surge forward, shaping the future and transforming every facet of our lives. Amidst this whirlwind of digital revolution, Sam Altman, the CEO of the prominent tech firm OpenAI, points to Israel as a pivotal player in ensuring that this technology evolves responsibly and securely. Israel’s influence in mitigating AI risks Altman, a vocal proponent of regulatory oversight in the AI space, is currently touring the globe, engaging with national leaders and lawmakers to discuss the potential advantages and pitfalls of AI. His journey has taken him to Israel, a country celebrated by a Stanford University study for its significant contributions to machine learning systems and a notable pool of AI expertise. During his visit, Altman commended the level of thoughtfulness, focus, and urgency demonstrated by global leaders in mitigating potential risks associated with…

    Article 2023年6月10日

  • France issues new rules for financial influencers— what you need to know

    TL;DR Breakdown France’s AMF and ARPP have launched a “Responsible Influence Certificate” to regulate financial influencers, covering a range of financial products, including crypto-assets. To earn the certificate, influencers must score at least 75% on a 25-question exam. The ARPP can revoke the certificate for non-compliance. Contrasting other European regulations, France approved an amendment allowing registered crypto companies to hire influencers for advertising, with updates to financial sector codes expected in October 2023. Description In a move aimed at professionalizing financial influencers, France’s Autorité des Marchés Financiers (AMF) and the Autorité de Régulation Professionnelle de la Publicité (ARPP) have jointly launched a training module. This initiative is part of a broader effort to regulate commercial influence in the financial sector, an activity that has come under legal scrutiny. The … Read more In a move aimed at professionalizing financial influencers, France’s Autorité des Marchés Financiers (AMF) and the Autorité de Régulation Professionnelle de la Publicité (ARPP) have jointly launched a training module. This initiative is part of a broader effort to regulate commercial influence in the financial sector, an activity…

    Article 2023年9月11日

  • U.S. Treasury’s massive borrowing drive puts banks on edge

    TL;DR Breakdown U.S. Treasury plans a $1 trillion borrowing spree, causing banking sector anxiety. The massive issuance could inflate government debt yields, draining bank deposits. Rising yields may force banks to increase interest rates on savings accounts. As the U.S. Treasury prepares to launch a colossal $1 trillion borrowing initiative, anxiety levels are rising among banking institutions. The flurry of borrowing activity, scheduled in the aftermath of the recently concluded debt ceiling standoff, is predicted to heap more pressure on an already strained banking system, according to traders and market analysts. Enormous Issuance Forecasted to Elevate Yields The Treasury department’s primary objective with the forthcoming borrowing spree is to restore its cash balance, which recently plunged to a low unseen since 2017. Projections by JPMorgan suggest that the U.S. will need to borrow approximately $1.1 trillion in short-term Treasury bills by the close of 2023. In fact, the next four months alone are expected to see a staggering $850 billion in net bill issuance. Anxiety within financial circles stems from fears that the enormous scale of the upcoming issuance could…

    Article 2023年6月13日

  • Arbitrum price analysis: Price elevates up to $1.24 after bullish momentum checks back

    TL;DR Breakdown The price has returned to the $1.24 level. Arbitrum price analysis predicts a bullish comeback. Support is still steady at $1.17. The latest Arbitrum price analysis is showing signs of a bullish recovery as the price has rejoined its former level today. The price had been consistently improving in the last week as a strong uptrend was following the market. The bulls were maintaining control quite efficiently until yesterday’s correction. The bulls were in the lead till the start of the previous trading session, but then selling pressure appeared and the trend changed in the second half, but it is recovering again today, as the price has regained momentum. The price is now at $1.24 as the bullish momentum has been successfully restored back. ARB/USD 1-day price chart: Chances of improvement resurface as the price relinks to $1.24 The one-day Arbitrum price analysis is dictating a rise in price as the bullish candlestick has returned to the price chart. The cryptocurrency faced selling pressure yesterday as the price underwent a small decline. But today, the bulls are trying…

    Article 2023年6月2日
TOP