Knowledge

OKLink Shares The Full Progress Of Nomad Bridge’s $190 Million Attack

Nomad Bridge’s entire $190.7 million was withdrawn in a security attack. OKLink’s investigation sheds light on the full evolution of this exploit.

As was updated in a previous Coincu News article, Nomad Bridge experienced a security attack on August 2nd, total estimated damage to date is over $190 million.

The entire Nomad Bridge attack process

Tracking by OKLink chain security guards shows that the Nomad Bridge attack incident involved a total of 1,251 ETH addresses, involved 14 currencies, and the amount involved was about $190 million including: 12 ENS addresses, ENS addresses related to a total of more than 69.8 million US dollars, accounting for a total of about 100 million US dollars, 38% of the total amount, after exploiting the loophole to make a profit, the number of addresses only directly transacted up to 739 addresses, accounting for nearly 60%.

The cause is identified as the Replica contract assigns assert [0x00] to 1 during initialization, so that uninitialized key-value pairs in the store variable message can pass the process successful detection.

Source: Anomalies detected when a transaction is made with the acceptRoot function

According to OKLink, starting from block 15259101, the attacker makes multiple calls to the Process function of the Replica contract. The contract leads to a security hole that could be bypassed by any notification.

Source: OKLink

Guardian on-chain analysts suggest that rigorous security testing and evaluation is also carried out in the initialization function.

In short, this incident did not arise because of the nature of the “cross-chain” but it was an issue arising from the security flaw of the contract – which can happen with any array of DeFi products. However, again and again, the danger of these products is that once attacked, it can quickly spread to neighboring chains, as well as related products.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Foxy

CoinCu News

Victor

Recent Posts

Best Altcoins to Buy Today: Qubetics Rides 1000x Potential to Hit $2.6M, Ethereum Stays Rangebound, Tron USDT Transactions Hit $52B

Discover the best cryptos to buy and hold today: Qubetics leads with 1000x potential, Ethereum…

50 minutes ago

Trump Media Company Is Pushing New Venture For Crypto Service

With the platform facing a cracked whip, Trump Media company is expanding into new business…

2 hours ago

Crypto Advisory Council Now A White House Position Attracting Leaders

Major crypto firms, including Ripple, Kraken, and Circle, are competing for spots on President-elect Donald…

2 hours ago

Analyst Sounds Major Breakout Alert Amid Shiba Inu, WallitIQ, And Dogecoin Price Recoveries

Analysts highlight a breakout alert as Shiba Inu (SHIB), and Dogecoin show signs of recovery…

3 hours ago

SEC Chair Gary Gensler Will Lose Power From January 20

SEC Chair Gary Gensler will step down on January 20, 2025, coinciding with President-elect Donald…

3 hours ago

MicroStrategy Convertible Notes Now Out of Stock With $3B Raised

The MicroStrategy convertible notes offering, initially set at $1.75 billion, was increased to $2.6 billion…

3 hours ago

This website uses cookies.