Inventory of 13 largest defi hackers and robberies in the history of cryptocurrency

Coin circle Culture Museum 2022-05-14 10:55:19 阅读数:78

inventorylargestdefihackersrobberies

Reprint the original link :http://www.btcwbo.com/5595.html

Decentralized Finance (defi) Refers to blockchain applications , Middlemen can be eliminated from financial products and services , Such as loans 、 Savings and expiration . although defi It brings a high return , But it also brings a lot of risks .
Because defects in code are very common , Almost everyone can start defi Protocol and write some smart contracts . stay defi in , Many unscrupulous actors are ready and able to take advantage of these shortcomings . When that happens , Millions of dollars will be stolen , Users usually have no right to recall .
according to Elliptic1 A monthly report ,Defi The user is in 2021 Lost due to theft in 105 Billion dollars . But this number has increased by millions , As our biggest defi The vulnerability usage list is shown in .
( The following figures are the capital value at the time of the event .
13.Grimfinance:3000 Thousands of dollars .
hackers
dapp Often get theme inspiration from the blockchain that builds them . therefore ,avalanche The ecosystem is full of references , Such as snowtrace、blizz and defrost. meanwhile ,fantom The ecosystem feels like a Halloween party on the chain . When something goes wrong , Will increase the darker rotation , Like the revenue optimizer protocol Grimfinance equally .
2021 year 12 month , The agreement was attacked again , This is a vulnerability where an attacker forges additional deposits to the vault when the previous transaction is not settled . Last , Attacks induce smart contracts to release value 3000 Thousands of dollars in Fantom Tokens, .
Defi Protocols usually use code snippets , You can re-enter protection - Prevent such attacks .Grimfinance The audit report of , come from Sollidityfinance The audit report of , Point out wrongly , The protocol can re-enter protection —— Remind audit that there is no guarantee that there are no loopholes .
12.merkatfinance.
hackers
Sometimes ,defi The agreement will soon be attacked for the first time .2021 year 3 month ,merkatfinance Lost... In a day 3100 Million user funds .
The attacker called a function in the contract , Make their address the owner of the vault , And ran out of stable money BUSD And others 73000BNB( The original token of money security ), The project ran out of 1396 Thousands of dollars . at that time ,BNB The robbery was worth about 1740 Thousands of dollars .
Many users think this is an internal job : Protocol developer's carpet pull . I deny these allegations .
11.Veefinance:300 Thousands of dollars .
hackers
Avalanche Our activities are in 2021 Increased in the summer of , This also attracts people eager to take advantage of the emerging ecosystem of blockchain network .
On the loan platform Veefinance Celebrate the total value of locked assets 3 $billion milestone value 3 The $billion milestone is only Avalanche The biggest attack on the network .
The attack was successful , Mainly because veefince The leveraged trading function of depends on avalanche Mainstream mobility agreement pangolin The token price offered . To abuse this , The attacker is pangolin Seven transaction pairs have been created on , Provide liquidity , In the end in vee Leverage trading on . This allows them to consume... From the agreement 3500 Ten thousand dollars of cryptocurrency .
Send it to dear sir / ma'am 0x***95ba In the tweet of , The agreement requires the attacker to return the funds as part of the reward plan , This will preserve a portion of the attacker . however Vee Hackers are unwilling to pay back .
10.pancakebunny:400 Thousands of dollars .
hackers
Cryptocurrency often goes through a short but strong fashion .2021 In the spring , Due to the low cost of the network , Coin security smart chain (BSC)( Now only BNB chain ) Is the most popular defi trend , Especially retail users .
However ,BSC Also suffered a lot of fraud and hacker attacks , The biggest one is 2021 year 5 Month pair PancakeBuny The attack of .
A hacker manipulated... Through a series of eight flash loan attacks PancakeBunny Pricing algorithm , Increased the original token price of this Agreement . Hackers bought it at a low price Bunny, Sell at artificially high prices , Make a 4500 Thousands of dollars .
bzx:500 Thousands of dollars .
hackers
After the private key is leaked ,2021 year 11 month , Multi Chain loan agreement bzx Hacked . The agreement is in binancesmartchain and polygon Lost 5500 Thousands of dollars .
however bzx I've experienced similar pain twice before .
Although flash loan attacks are common today defi Attack strategy , but bzx In this respect is OG.2020 year 2 month ,Fulcrum Lightning loans to its margin trading platform have been attacked . Hackers stole the value at that time 3.6 Thousands of dollars in 1.3 10000 packages ETH.
stay 2020 year 9 In another attack in August ,bzx Lost the value at that time 800 In the $10000 vault 30% Capital of . However , Users who hold open positions have not suffered losses , Because as the agreement later said in the report , These funds are from bzx Deducted from the insurance fund .
8.badgerdao:1.2 Billion dollars .
In smart contracts Fi Millions of dollars evaporated from the project is not the case .
2021 year 12 month ,Badgerdao from defi Lost... On the bridge 1.2 Billion dollars , Swindlers deceive Badgerdao Members approve malicious transactions , Let them control users' vault funds and transfer funds .
Peckshield Express , The contract of the agreement will not be attacked , It will only affect the user interface .
Creamfinance:1.3 Billion dollars .
hackers
2021 year 10 month ,Finance stay 2021 year 10 Lost... In the lightning loan attack in June 1.3 Billion dollars —— This is the third attack on the protocol .
If you repay in the same transaction , Flash loan allows you to get a loan immediately . Although they are useful for arbitrage trading , But they are widely deployed by malicious actors , To take advantage of defi Loopholes in the agreement . stay creamfinance In the case , Lightning loan hackers can exploit pricing vulnerabilities by repeatedly using lightning loans at different Ethereum addresses .
Creamfinance I've seen all this before .2021 year 8 month , A hacker stole about in another flash loan attack 2500 Thousands of dollars , The main attack Flexanetwork Native token AMP. stay 2021 year 2 In the lightning loan attack in August , Hackers sucked... From the protocol pool 3750 Thousands of dollars .
6.VulcanForged:1.4 Billion dollars .

Decentralized Finance (defi) Is a blockchain application , You can borrow money from 、 savings 、 Elimination of expired and other financial products and services . although defi Bring high returns , But it also brings a lot of risks .
Because defects in code are very common , Almost everyone can start defi Protocol and write some smart contracts . stay defi in , Many unscrupulous actors are ready and can take advantage of these defects . When that happens , Millions of dollars will be stolen , Users usually have no right to recall .
according to Elliptic1 A report for the month ,2021 year defi User lost due to theft 105 Billion dollars . But this number has increased by millions , As our biggest defi The vulnerability usage list is shown in .
( The following figures are the capital value at the time of the event .
13.Grimfinance.
hackers
dapp Often get theme inspiration from building blockchains . therefore ,avalanche Ecosystems are full of references , Such as snowtrace、blizz and defrost. meanwhile ,fantom The ecosystem can also feel the Halloween party on the chain . When something goes wrong , It will increase the darker rotation , Like the revenue optimizer protocol grimfinance equally .
2021 year 12 month , The agreement has been attacked again , This is a vulnerability where an attacker forges additional deposits to the vault when the last transaction is not settled . Last , Attacks induce smart contracts to release value 3000 Thousands of dollars in Fantom Tokens, .
Code snippets are often used for Defi agreement , You can re-enter protection - Prevent such attacks .Grimfinance Our audit report comes from Solllidityfinance, Incorrectly indicating that the protocol can re-enter protection , Remind audit that there is no guarantee that there are no loopholes .
12.merkatfinance.
hackers
occasionally ,defi The agreement will soon be attacked for the first time .2021 year 3 month ,merkatfinance Loss of user funds 3100 Thousands of dollars .
The attacker called a function in the contract , Make their address the owner of the vault , Run out of stable money BUSD And others 73000BNB( Currency safe local token ) and 1396 Thousands of dollars . at that time ,BNB The value of the robbery is about 1740 Thousands of dollars .
Many users think this is an internal job : Protocol developers pull the carpet . I deny these allegations .
11.Veefinance:300 Thousands of dollars .
hackers
2021 In the summer ,Avalanche More activities , It also attracts people eager to take advantage of the emerging ecosystem of blockchain network .
On the loan platform Vefinance On , Only Avalanc platform Vefinance Locked in assets 3 Billion dollar milestone .
The attack was successful , Mainly because vefince The leveraged trading function of depends on avalanche Mainstream mobility agreement pangolin The token price offered . To abuse this , The attacker is pangolin Seven transaction pairs have been created on , Provide liquidity , In the end in vee Leverage trading on . This allows them to consume... From the agreement 3500 Ten thousand dollars of cryptocurrency .
The agreement requires the attacker to return the funds to dear sir / ma'am 0x***95ba As part of the reward plan , This will preserve a portion of the attacker . however Vee Hackers are unwilling to pay back .
10.pancakebuny:400 Thousands of dollars .
hackers
Cryptocurrency often goes through a short but strong fashion .2021 In the spring , Due to the low cost of the network , Smart money chain (BSC) Is the most popular defi trend , Especially retail users .
However ,BSC Also suffered a lot of fraud and hacker attacks , The biggest one is 2021 year 5 Month pair PancakeBuny The attack of .
Hackers manipulated... Through a series of eight flash loan attacks Pancakebuny Pricing algorithm , Increased the original token price of this Agreement . Hackers to 4500 Million dollars to buy bunny.
bzx:500 Thousands of dollars .
hackers
After the private key is leaked ,2021 year 11 month , Multi Chain loan agreement bzx Hacked . The agreement is binancesmartchain and polygon Lost 5500 Thousands of dollars .
however bzx I've experienced similar pain twice before .
Although flash loan attacks are common today defi Attack strategy , but bzx In this respect is OG.2020 year 2 month ,fulcrum Lightning loans attacking its deposit trading platform . Hackers stole the value at that time 3.6 Thousands of dollars in 1.3 Wan Bao eth.
stay 2020 year 9 In another attack in August ,bzx Lost the value at that time 800 In the $10000 vault 30% Capital of . However , Users who hold open positions have not suffered losses , Because as the agreement later said in the report , These funds come from bzx Deduct from the insurance fund of .
8.badgerdao:1.2 Billion dollars .
In smart contracts Fi Millions of dollars evaporated from the project... Not so .
2021 year 12 month ,Badgerdao from defi Loss on bridge 1.2 Billion dollars . A liar seduces Badgerdao Members approve malicious transactions , Allow them to control users' vault funds and transfer funds .
Peckshield Express , The contract of the agreement will not be attacked , It will only affect the user interface .
creafinance:1.3 Billion dollars .
hackers
Finance stay 2021 year 10 Lost... In the lightning loan attack in June 1.3 Billion dollars , This is the third attack on the protocol .
If you repay in the same transaction , Flash loan allows you to get a loan immediately . Although they are very useful for arbitrage trading , But they are widely deployed by malicious actors , To take advantage of defi Loopholes in the agreement . stay creamfince In the case , Lightning loan hackers can repeatedly use lightning loan in different Ethereum addresses , Use pricing loopholes .
I've seen all this before .2021 year 8 month , A hacker stole about in another flash loan attack 2500 Thousands of dollars , The main attack Flexanetwork Local tokens AMP. stay 2021 year 2 In the lightning loan attack in August , Hackers absorbed... From the protocol pool 3750 Thousands of dollars .
6.VulcanForged:1.4 Billion dollars .

版权声明:本文为[Coin circle Culture Museum]所创,转载请带上原文链接,感谢。 https://netfreeman.com/2022/134/202205141030084752.html