1. BITBILIHome
  2. Article

Hacker exploits vulnerability, drains $455,000 from DeFi protocol Arcadia Finance

99 views

TL;DR Breakdown

  • Hacker exploits code vulnerability in Arcadia Finance, draining approximately $455,000 from the DeFi protocol’s Ethereum and Optimism vaults.
  • The breach highlights the need for improved input validation and reentrancy protection in decentralized finance platforms.
  • The incident contributes to the growing number of cyber attacks in the crypto space, prompting concerns about security and the potential impact on the Optimism network’s revenue and future growth.

Description

Arcadia Finance, a noncustodial protocol supporting on-chain cross-margin accounts, fell victim to a cyber attack that resulted in the loss of approximately $455,000. However, the hacker exploited a code vulnerability, exposing a weakness in the platform’s validation mechanism. The vulnerability allowed unverified inputs to go unchecked, enabling the hacker to drain funds from Arcadia Finance’s … Read more

Arcadia Finance, a noncustodial protocol supporting on-chain cross-margin accounts, fell victim to a cyber attack that resulted in the loss of approximately $455,000. However, the hacker exploited a code vulnerability, exposing a weakness in the platform’s validation mechanism. The vulnerability allowed unverified inputs to go unchecked, enabling the hacker to drain funds from Arcadia Finance’s Ethereum (darcWETH) and Optimism (darcUSDC) vaults.

Code vulnerability leads to significant losses

The breach was first discovered by PeckShield, a prominent cybersecurity firm known for its expertise in the blockchain domain. PeckShield promptly alerted Arcadia Finance about the hack, emphasizing the lack of untrusted input validation as the primary cause of the exploit. Following PeckShield’s intimation, 

The perpetrator demonstrated a swift response by successfully transferring an estimated 179.3 ETH from the Optimism[OP] network. This sum was attained by utilizing a combination of 148 ETH, which had been bridged from the Ethereum network, and approximately 59,000 USDC that was swapped.

The stolen funds were laundered through Tornado Cash, a decentralized privacy solution for cryptocurrencies. However, the stolen tokens on the Ethereum network, valued at over $103,000 at the time of writing, remain parked in the suspected wallet address, awaiting further investigation.

Arcadia Finance acknowledged the breach and swiftly halted its contracts to prevent further loss of funds.

PeckShield also disclosed an additional vulnerability within Arcadia Finance’s code. This vulnerability, known as a lack of reentrancy protection, poses a severe risk to the protocol’s internal vault health check. If exploited, this vulnerability could have severe consequences for the platform.

The incident adds to the growing list of cyber attacks and exploits that have plagued the cryptocurrency space during the second quarter of 2023. A recent report by CertiK, a leading blockchain security company, revealed that a total of 212 security incidents occurred during the quarter, resulting in a staggering loss of $313,566,528 from Web3 protocols.

Defi Llama’s data reveals that Arcadia Finance’s TVL has taken a significant hit in the past few days due to the prevailing uncertainty surrounding the company.

Screenshot 2023 07 10 at 11.53.57 AMHacker exploits vulnerability, drains 5,000 from DeFi protocol Arcadia Finance
Arcadia Finance’s TVL declines. Source: DeFi Llama

Impact on Optimism network and future growth

The exploitation of Arcadia Finance affected the protocol and had implications for the broader Optimism network. Token Terminal’s data indicates that although the number of daily active users on Optimism experienced a robust growth rate of 3.9% over the past week, the platform’s revenue witnessed a significant decline. In just the last seven days, the revenue generated by Optimism plummeted by 52.6%.

This decline in revenue raises concerns about the long-term growth prospects of the Optimism network. Moreover, the OP token, which is closely associated with Optimism, has experienced a substantial decline in price over the past month. Additionally, the velocity of OP token trading has diminished, indicating a decrease in trading activity. It is important to note that the OP token was trading at $1.18 at the time of writing. 

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Hacker exploits vulnerability, drains $455,000 from DeFi protocol Arcadia Finance

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年7月11日 03:33
Next 2023年7月11日 04:44

Related articles

  • Best Twitter threads of the day – August 30th

    Description Top crypto price predictions for the 2024–2025 bull run Elon Musk’s SECRET Master Plan for X Top crypto price predictions for the 2024–2025 bull run Grayscale made the whole market green! Analysts are calling for imminent #Bitcoin ETF approval. This will cause over $𝟭𝟬𝗧 of new money to flow into Bitcoin and #Crypto A thread on top crypto price predictions for the 2024–2025 bull run 🧵 (Like & Retweet) pic.twitter.com/ld7Ql5Druv — Sjuul | AltCryptoGems (@AltCryptoGems) August 30, 2023 Before we start, I want you to bookmark this thread for the CT culture so that you can come back in the future and see how these predictions went. In the last bull run, the total crypto market cap topped at $3T and I expect this number to go at least 3x by the next bull run. — Sjuul | AltCryptoGems (@AltCryptoGems) August 30, 2023 In this thread, I have assumed a few things. – Bitcoin will still be no. 1 with around 35%–40% dominance at the peak, and ETH will still be the no.2 – Legacy coins and meme coins…

    Article 2023年8月31日

  • Hashflow price analysis: Bearish flux drives the price to $0.424

    TL;DR Breakdown Hashflow price analysis supports the bears. Price dropped down to $0.424 level. Support is still stable at $0.398. The Hashflow price analysis reveals a persisting downward trajectory as a significant downward movement has been registered today. The bearish momentum has exerted a considerable adverse influence on the cryptocurrency’s value, leading to a substantial and noteworthy decrease in price. The prevailing bearish wave has brought the HFT/USD value down to the critical threshold of $0.424, thereby creating a highly favorable environment for bearish market participants. Consequently, the cryptocurrency’s overall trend has been characterized by a notable and continuous descent. HFT/USD 1-day price chart: Price abruptly steps down to $0.424 after unwavering success The one-day Hashflow price analysis has delivered surprising outcomes for buyers, with an unexpected downward movement observed. The bearish momentum has been robust, pushing the price down to the $0.424 level within the past 24 hours. While the price had displayed stability in the previous week, it is now on a declining trajectory. The moving average indicator currently sits at $0.451, signaling a downward trend. Notably, there…

    Article 2023年5月23日

  • SEC-Binance.US deal gets green light from court

    TL;DR Breakdown U.S. Judge approved an agreement between Binance.US, Binance, and the Securities and Exchange Commission (SEC), dismissing a previous asset freeze order. The agreement ensures that only Binance.US employees have access to client funds until litigation resolves. Binance global officials are prevented from accessing private keys of wallets or Binance.US’s Amazon Web Services tools. Description Following tense negotiations and legal proceedings, the United States-based operations of cryptocurrency exchange giant, Binance, have finally received some much-needed respite. A ruling by U.S. Judge Amy Berman Jackson on June 17 saw the approval of an agreement between Binance.US, Binance, and the Securities and Exchange Commission (SEC). This critical decision dismissed an erstwhile Temporary … Read more Following tense negotiations and legal proceedings, the United States-based operations of cryptocurrency exchange giant, Binance, have finally received some much-needed respite. A ruling by U.S. Judge Amy Berman Jackson on June 17 saw the approval of an agreement between Binance.US, Binance, and the Securities and Exchange Commission (SEC). This critical decision dismissed an erstwhile Temporary Restraining Order (TRO) that threatened to immobilize all Binance.US assets. Breaking…

    Article 2023年6月20日

  • Avalanche price analysis: AVAX price reverses to $14, hitting a four-month low

    TL;DR Breakdown Avalanche price analysis is bearish today. The resistance for cryptocurrency is found at $14.7. The support for AVAX is present at $13.7. The latest Avalanche price analysis reveals bearish results for the day, with the price suffering yet another loss. Continuing the downtrend that initiated on May 24, 2023, the price has now decreased by $14. The short-term trend line slopes downwards, indicating the prevailing influence of bears. As the price continues its downward trajectory, it has now reached its lowest point in the past four months. AVAX/USD 1-day price chart: AVAX price takes a bearish slide, dropping to $14 in value Today, the 1-day Avalanche price analysis chart continues its bearish movement, following a prolonged period of losses. The AVAX/USD price has now reached its lowest point in the past four months, plummeting to $14. The last time the coin was at this price level was on January 11, 2023, when it experienced a sudden spike. However, today it has declined after remaining above this level for over four months. Over the last 24 hours, the coin…

    Article 2023年5月28日

  • Sui Network revolutionizes Web3 onboarding with zkLogin feature

    TL;DR Breakdown Web3 onboarding gets easier with Sui Network’s innovative zkLogin feature. Users can access decentralized applications (DApps) without the need for external crypto wallets or seed phrases. Users can leverage the privacy and ownership-preserving features of blockchain-based applications without compromising security.  Description In a significant leap towards simplifying the onboarding process for Web3 applications, the Sui Network has introduced a groundbreaking feature called zkLogin (Zero Knowledge login). This innovation enables users to access decentralized applications (DApps) without the need for external crypto wallets or seed phrases. Instead, users can log in using familiar credentials from platforms like … Read more In a significant leap towards simplifying the onboarding process for Web3 applications, the Sui Network has introduced a groundbreaking feature called zkLogin (Zero Knowledge login). This innovation enables users to access decentralized applications (DApps) without the need for external crypto wallets or seed phrases. Instead, users can log in using familiar credentials from platforms like Google, Facebook, and Twitch, making blockchain-based applications more accessible to mainstream users. Sui network on eliminating onboarding hassles On September 13, the Sui Network…

    Article 2023年9月14日
TOP