dForce Vaults Suffer an Exploit

There have been reports that wstETH/ETH Curve gauge vaults on Arbitrum and Optimism have been exploited in the last several hours. The dForce Vaults were reportedly put on hold as soon as the issue was discovered as dForce took rapid action. Later, the company reassured customers that other components of the protocol had not been compromised and that their payments were still secure with dForce.

The magnitude of the attack

The danger posed by the attacker to the company was significant and incurred losses to the company. The pricing oracle that the dForce lending protocol uses were susceptible to alteration by the adversary. Following that, the attacker placed bets in order to earn gains at a price that was slanted toward them.

The exploiter was able to liquidate a number of positions using the wstETHCRV-gauge as collateral since the price of the dForcenet wstETHCRV-gauge asset was manipulated via reentrancy. This made the hack feasible. This resulted in a loss of around 1.91 million in Arbitrum and approximately 1.73 million in OptimismFND.

What makes crypto firms vulnerable to hacks?

Poor security procedures, unpatched software, phishing attacks, social engineering, and even insider attacks are just some of the many reasons why cryptocurrency businesses may be compromised. Weak passwords, no two-factor authentication, and improper storage of private keys are all examples of bad security habits. Outdated software may introduce security holes that hackers may exploit. Additionally, also people might be duped into giving out confidential information like passwords and private keys through phishing attacks.

The use of social engineering tactics by hackers is another method they might employ to get access to private information. A major danger comes from insiders, such as workers or contractors, who have access to private data. Hacks are hard to solely eliminate as nothing can be built to perfection. However, making the right choice on how to store your crypto assets is very vital.

Bookmark (0)
ClosePlease loginn

Related Posts

A sincere thank you to our valuable sponsors: CoinDesk, Nexo and 1inch

A sincere thank you to our valuable sponsors: CoinDesk, Nexo and 1inch

Discover the cutting-edge services of CoinDesk and Nexo, the leading names in crypto and blockchain, and unlock the full potential of your digital assets.

Bookmark (0)
ClosePlease loginn
U.S. government sold over 9k BTC for $215.7M on March 14

U.S. government sold over 9k BTC for $215.7M on March 14

The US government said it plans to liquidate over 40,000 Bitcoin in four batches during this calendar year.

Bookmark (0)
ClosePlease loginn
Justin Sun’s Grenada ambassadorship to WTO ends

Justin Sun’s Grenada ambassadorship to WTO ends

Grenada’s local media reported that Justin Sun had been recalled after the political party that appointed him lost elections in June 2022.

Bookmark (0)
ClosePlease loginn
More than 50% of Bitcoin mining uses renewable energy

More than 50% of Bitcoin mining uses renewable energy

Almost a quarter of all Bitcoin miners use water to power their setups, while wind and nuclear are the second and third biggest contributors.

Bookmark (0)
ClosePlease loginn
Bittrex to halt US operations by end of April

Bittrex to halt US operations by end of April

The cryptocurrency exchange will only serve global customers going forward.

Bookmark (0)
ClosePlease loginn
Binance.US transitioning to new bank providers; briefly affecting deposits, withdrawals

Binance.US transitioning to new bank providers; briefly affecting deposits, withdrawals

Many transfer methods, including Signature ACH transfers, are affected.

Bookmark (0)
ClosePlease loginn

Leave a Reply

Your email address will not be published. Required fields are marked *