Knowledge

OKLink Shares The Full Progress Of Nomad Bridge’s $190 Million Attack

Nomad Bridge’s entire $190.7 million was withdrawn in a security attack. OKLink’s investigation sheds light on the full evolution of this exploit.

As was updated in a previous Coincu News article, Nomad Bridge experienced a security attack on August 2nd, total estimated damage to date is over $190 million.

The entire Nomad Bridge attack process

Tracking by OKLink chain security guards shows that the Nomad Bridge attack incident involved a total of 1,251 ETH addresses, involved 14 currencies, and the amount involved was about $190 million including: 12 ENS addresses, ENS addresses related to a total of more than 69.8 million US dollars, accounting for a total of about 100 million US dollars, 38% of the total amount, after exploiting the loophole to make a profit, the number of addresses only directly transacted up to 739 addresses, accounting for nearly 60%.

The cause is identified as the Replica contract assigns assert [0x00] to 1 during initialization, so that uninitialized key-value pairs in the store variable message can pass the process successful detection.

Source: Anomalies detected when a transaction is made with the acceptRoot function

According to OKLink, starting from block 15259101, the attacker makes multiple calls to the Process function of the Replica contract. The contract leads to a security hole that could be bypassed by any notification.

Source: OKLink

Guardian on-chain analysts suggest that rigorous security testing and evaluation is also carried out in the initialization function.

In short, this incident did not arise because of the nature of the “cross-chain” but it was an issue arising from the security flaw of the contract – which can happen with any array of DeFi products. However, again and again, the danger of these products is that once attacked, it can quickly spread to neighboring chains, as well as related products.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Foxy

CoinCu News

Victor

Recent Posts

Gate.io Shatters Records in Total Trading Volume in Q3 2024, with Its User Base Surpassing 17 Million

In the third quarter of 2024, despite a challenging market environment, Gate.io maintained strong growth…

1 hour ago

MEXC Champions the Future of Crypto Content Creation at CCCC

MEXC is proud to partner with the inaugural Crypto Content Creator Campus CCCC event, taking…

1 hour ago

Dtec Announces Global Partnership with DİZAYNVIP to Elevate AI-Driven Mobility Design  

Dtec and DİZAYNVIP partner to merge AI technology with luxury vehicle design, revolutionizing smart mobility…

2 hours ago

Bitcoin Spot ETF Outflows Reach Second Highest in History

Bitcoin Spot ETF Outflows hit $541M on November 4, the second-highest single-day outflow in history.…

7 hours ago

PropiChain’s Token Presale Turns Heads as the First DeFi Platform to Merge NFTs with AI 

The hype around PropiChain’s token presale is due to its innovative integration of NFTs and…

9 hours ago

UK Pension Fund Cartwright Encourages 3% Allocation to Bitcoin Investment

UK pension fund Cartwright advised the country's first defined benefit pension fund to allocate 3%…

11 hours ago

This website uses cookies.