1. BITBILIHome
  2. Article

Curve Finance hacker returns part of stolen funds

32 views

TL;DR Breakdown

  • Curve Finance lost $24 million in a DeFi exploit.
  • The hacker returned $5.4 million of the stolen funds.
  • Curve’s total value locked (TVL) dropped 43% after the incident.

Description

On July 30, Curve Finance, a prominent stablecoin lending protocol, experienced a significant exploit on several stable pools. The exploit was traced back to vulnerabilities in specific versions of the Vyper compiler, a smart contract programming language for the Ethereum Virtual Machine (EVM), Cryptopolitan reported. However, the affected versions were 0.2.15, 0.2.16, and 0.3.0. The … Read more

On July 30, Curve Finance, a prominent stablecoin lending protocol, experienced a significant exploit on several stable pools. The exploit was traced back to vulnerabilities in specific versions of the Vyper compiler, a smart contract programming language for the Ethereum Virtual Machine (EVM), Cryptopolitan reported.

However, the affected versions were 0.2.15, 0.2.16, and 0.3.0. The exploit mechanism, known as “malfunctioning reentrancy locks,” allowed the attacker to bypass the intended safeguards and drain funds from the targeted contracts.

According to Curve Finance CEO Michael Egorov in a Telegram channel, the swap pool has been drained of 32 million CRV tokens, which are worth over $22 million. However, experts estimate that the total loss could be more than $40 million.

Impact on DeFi ecosystem and Curve Finance

The exploit significantly impacted the DeFi ecosystem, with several projects reporting substantial financial losses. These include decentralized exchange Ellipsis, Alchemix’s alETH-ETH pool, JPEGd’s pETH-ETH pool, and Metronome’s sETH-ETH pool. The total losses were estimated to be upwards of $24 million. The incident triggered a wave of panic across the DeFi ecosystem, prompting a flurry of transactions across various pools. In response to the news, Curve Finance’s native token, CRV, experienced a decline of over 5%.

Hacker returns some funds, and future measures

In a surprising turn, the exploiter returned some of the stolen funds to the protocol. PeckShield, a blockchain security company, reported that the Curve exploiter had returned 2,879 ETH, worth around $5.4 million, to the protocol deployer address. The incident underscores the importance of robust security measures in DeFi protocols. As the investigation progresses and more updates unfold concerning the hack,  developers are expected to work closely with the Vyper team to address the vulnerabilities and prevent future exploits.

It is important to know that this is not the first time Curve Finance has been a target of attack. Its Conic Finance omnipool was exploited last week, resulting in a loss of $3.6 million in Ethereum due to a reentrancy attack.

Additionally, Curve Finance’s total value locked has decreased by 43% since the exploit, dropping from $3.26 billion to $1.87 billion, as reported by DeFiLlama. At the time of press, the CRV token is down by 12%, and trading at $0.645336.

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Curve Finance hacker returns part of stolen funds

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年7月31日 20:01
Next 2023年7月31日 21:00

Related articles

  • Binance CEO warns of new scam targeting crypto users

    TL;DR Breakdown Binance CEO Changpeng “CZ” Zhao warns of a new scam using mirrored wallet addresses, targeting crypto users. Experienced operators have already fallen victim, with one losing $20 million before a timely response prevented further loss. The scam can be avoided through blockchain domains like the Ethereum Name Service, strong, unique passwords, and two-factor authentication. Description Changpeng “CZ” Zhao, the CEO of Binance, has brought to light a deceptive crypto scam that targeted his users. This latest ploy involves a sophisticated manipulation of wallet addresses, which has already led to significant financial loss for some. Here’s a detailed insight into this alarming trend. Deceptive addresses and dust transactions CZ revealed a … Read more Changpeng “CZ” Zhao, the CEO of Binance, has brought to light a deceptive crypto scam that targeted his users. This latest ploy involves a sophisticated manipulation of wallet addresses, which has already led to significant financial loss for some. Here’s a detailed insight into this alarming trend. Deceptive addresses and dust transactions CZ revealed a new scam that has alarmed the crypto community. The fraudsters…

    Article 2023年8月3日

  • Hackers funnel 70.6% of stolen BitBrowser funds to eXch crypto mixer

    TL;DR Breakdown SlowMist has been tracking the recent BitBrowser hack, revealing significant movements by the hackers. The hackers transferred 236.27 Ethereum tokens, roughly $386,000, to a crypto mixer called eXch, accounting for 70.6% of the total stolen funds. Using a crypto mixer aims to obfuscate the financial trail, enabling hackers to sell the assets on centralized exchanges without potential detection. Description In a riveting development, renowned Chinese reporter Colin Wu has shed new light on the high-profile BitBrowser hack that rattled the crypto community in August. Citing SlowMist, a leading blockchain security firm, Wu revealed that the hackers have made a significant move. Specifically, they transferred 236.27 Ethereum tokens, equivalent to roughly $386,000, to a crypto … Read more In a riveting development, renowned Chinese reporter Colin Wu has shed new light on the high-profile BitBrowser hack that rattled the crypto community in August. Citing SlowMist, a leading blockchain security firm, Wu revealed that the hackers have made a significant move. Specifically, they transferred 236.27 Ethereum tokens, equivalent to roughly $386,000, to a crypto mixer known as eXch. This transaction…

    Article 2023年9月4日

  • New phishing attacks target FTX users following Kroll data breach

    TL;DR Breakdown A significant data breach at Kroll has led to new phishing attacks on FTX users, with the breach method revealed to be a SIM swap on an employee’s account. Users are urged to enhance their digital security, stay informed, and remain vigilant against potential cyber threats. Description In a recent development that has sent shockwaves through the cryptocurrency community, Changpeng ‘CZ’ Zhao, the CEO of Binance, one of the world’s leading crypto exchanges, has issued a stark warning to users of the now-defunct FTX platform. The alert pertains to a new wave of phishing attacks that have been unleashed in the wake … Read more In a recent development that has sent shockwaves through the cryptocurrency community, Changpeng ‘CZ’ Zhao, the CEO of Binance, one of the world’s leading crypto exchanges, has issued a stark warning to users of the now-defunct FTX platform. The alert pertains to a new wave of phishing attacks that have been unleashed in the wake of a significant data leak from Kroll, FTX’s bankruptcy case claims agent. Contents hide 1 The Kroll data…

    Article 2023年8月28日

  • Roger Ver hails Ethereum as the catalyst for crypto Adoption

    TL;DR Breakdown Roger Ver, famously known as “Bitcoin Jesus,” promotes Ethereum as a force of mass crypto adoption in the DeFi global ecosystem. Ethereum does not exist to provide a stateless alternative currency or an anonymous shadow economy. It simply provides neutrality. Ver also spoke on the recent Ledger debate, calling the controversial Recover service “disappointing.” Roger Ver made headlines for allegations of defaulting on debt in 2022. Despite its scaling issues and competition from layer-one clones, Roger Ver has commended Ethereum as the primary force behind worldwide crypto adoption. Speaking on the Show Me The Crypto podcast, Ver praised the development of layer-2 scaling techniques like Polygon MATIC and the rise of Ethereum.  Ethereum’s Growth and Scaling Solutions: Ver’s Perspective According to news reports, Roger Ver, a Bitcoin investor, asserted that Ether will be the main attraction for new users to crypto. Despite Ether’s scaling troubles and the numerous layer-one clones that have emerged in its aftermath, Ver, known as “Bitcoin Jesus” for his early support of bitcoin, claimed on a May 31 episode of the Show Me The…

    Article 2023年6月4日

  • U.S. federal court clears the way for HelbizCoin investors’ Class-action lawsuit

    TL;DR Breakdown U.S. federal court greenlights class-action lawsuit against HelbizCoin creators, citing fraud and securities law violations. The court’s ruling deems Helbiz’s ERC-20 token as a security, potentially shaping future cryptocurrency regulations. Blockchain transparency played a pivotal role in the case. Description In a significant legal development, a United States federal court has given the green light to a class-action lawsuit against the creators of HelbizCoin. This lawsuit, which has been ongoing for nearly three years, alleges fraudulent activities and violations of securities laws by the Italian electric scooter-sharing company HelBiz and its partners.  The case centres … Read more In a significant legal development, a United States federal court has given the green light to a class-action lawsuit against the creators of HelbizCoin. This lawsuit, which has been ongoing for nearly three years, alleges fraudulent activities and violations of securities laws by the Italian electric scooter-sharing company HelBiz and its partners.  The case centres around an initial coin offering (ICO) conducted by HelBiz in 2018, during which it raised $38.6 million and issued an ERC-20 token involving one of…

    Article 2023年9月4日
TOP