Hundred Finance, a DeFi lending platform, lost over 2363 ETH (about $6.5 million) in a reentrancy attack on March 16. SlowMist, a blockchain security firm, tweeted about the assault, breaking it down and displaying the movement of assets.
The hacker employed the Tornado Cash mixing service to hide the trail of the payments, which is common among bad actors carrying out similar assaults. The hacker’s address sent cash to the Gnosis network, where they were used to establish fraudulent contracts that borrowed millions in flash loans from SushiSwap as collateral on Hundred Finance.
They then took advantage of a defect in the loan contract, borrowed more than their collateral offered, and continued to do so until millions were created. These funds were converted to ETH before being returned to the Ethereum network.
SlowMist advised teams to be cautious when utilizing non-ERC20 token contracts and to check to see whether they are compatible. It also suggested that:
“contract amounts should be recorded before token transfers, and the Checks-Effects-Interactions rules should be followed to avoid issues like this in the future.”
2022 has already seen multiple attacks in the DeFi sector, and it’s easy to understand why: hackers recognize a lot to be gained from the numerous projects expanding in TVL on a daily basis.
This is another another reentry assault on a DeFi project that has a history of being exploited. Hackers have long exploited flaws in smart contracts to drain revenue, creating a massive headache for teams.
Grim Finance lost $30 million in a similar attack last year, as did Cream Finance, which was targeted three times in 2021. According to CertiK, a security organization that examines smart contracts, 44 DeFi attacks will occur in 2021 as a result of centralization.
Crypto insurance is one solution that has been presented to help with the situation. However, this has yet to completely take effect, and investors continue to lose money. The most critical step that projects can take is to guarantee that their smart contract works properly. When it comes to investing these days, this has become a critical decision.
Join CoinCu Telegram to keep track of news: https://t.me/coincunews
Follow CoinCu Youtube Channel | Follow CoinCu Facebook page
Patrick
CoinCu News
Discover the Best New Meme Coins to Join for 2025. BTFD Coin's price rollback offers…
Discover how DTX Exchange's historic achievement of 100,000 transactions per second on a layer-1 blockchain…
VanEck suggests the U.S. could reduce its national debt by 35% by 2050 through a…
President-elect Donald Trump named Bo Hines as the executive director of the presidential crypto council.
Explore the best new meme coins with 1000X potential. Learn how BTFD Coin leads with…
BlockDAG crosses $170.5M in presale success with BDAG250 bonus and Whitepaper V3 launch! Solana grows…
This website uses cookies.