CRV Hacker Attack: Stolen Tokens, Vulnerabilities, and Potential Deals – Latest Updates and Analysis

2023-07-31 17:03:34

During the hacker attack carried out on July 30, the hackers targeted the CRV token this time. The price of the token dropped from $0.70 to $0.10 in no time. According to the current developments, the hacker who attacked the CRV/ETH pool stole 7 million CRV and $14 million worth of WETH. Curve Finance released a statement shortly following the attack saying, “A number of stablepools (alETH/msETH/pETH) using Vyper 0.2.15 have been hacked due to a malfunctioning reentrancy lock. We are still investigating the situation and will keep the community informed of developments. The other pools are safe.” Reentrancy is a common flaw that allows attackers to spoof a smart contract by repeatedly calling a protocol many times to steal assets. The call is to authorize the smart contract address to interact with the user’s wallet address. Other projects using the Vyper programming language may have the same vulnerability. According to its website, Curve operates 232 different pools, but only those using Vyper versions 0.2.15, 0.2.16 and 0.3.0 are at risk, said team member mimaklas in a Discord post. The price of the CRV token also suffered from the hacker attack. According to the information obtained, the hackers completely emptied the attacked pools. One of the attacked platforms, Alchemix, said: “A hacker tapped the alETH/ETH curve pool during the transaction queuing process to extract the remaining liquidity. As a result, regarding 5000 ETH backing alETH was lost “. After the attack, the price of CRV immediately fell to $0.10, but at the time of writing it is trading at $0.636, down 13% in the last 24 hours. The person who hacked Curve Finance immediately messaged his victims by adding a comment to the blockchain transaction he made. In this, the hacker announced that he had moved the stolen devices to cold wallets for the time being, and that the operators of the affected protocols might contact him in the etherscan chat section. Many believe that the hacker wants to make a deal with the affected protocols.
1690828068
#DeFi #hacker #attack #time #Curve #Finance #victim

Leave a Replay