Disclaimer: Information found on CryptoreNews is those of writers quoted. It does not represent the opinions of CryptoreNews on whether to sell, buy or hold any investments. You are advised to conduct your own research before making any investment decisions. Use provided information at your own risk.
CryptoreNews covers fintech, blockchain and Bitcoin bringing you the latest crypto news and analyses on the future of money.
Decentralized finance (DeFi) protocols Exactly and Harbor were targeted on Aug. 18 in two distinct — and seemingly unrelated — attacks, as reported by blockchain security firms DeDotFi and PeckShield.
On-chain analysis indicates that 4323.6 Ether (ETH), valued at nearly $7.3 million at the time of this report, was taken from Exactly Protocol. The attackers subsequently bridged 1490 ETH using the Across Protocol and transferred 2,832.92 ETH to the Ethereum network via Optimism Bridge.
Update: Following a comprehensive examination of the Exactly Protocol Hack, we have determined that the total amount stolen to date is approximately $7.2M (4323.6 $ETH)
Ultimately, they bridged around 1490 $ETH using Across Protocol, and 2,832.92 $ETH to Ethereum through Optimism Bridge:… https://t.co/s61ai1OEMd— De.Fi ️ Web3 Antivirus (@DeDotFiSecurity) August 18, 2023
Exactly operates as one of the crypto lenders on the Optimism network. Initial reports indicated that over 7160 ETH had been stolen, amounting to nearly $12 million, but these figures were later adjusted to show a lesser sum missing. The attacker exploited the DebtManager periphery contract, as stated by Exactly:
Related Posts
“The attacker provided a malicious market contract address, circumventing the permit check, and executed a harmful deposit function to misappropriate assets deposited by users. Approximately $7.3M were taken.”
The protocol has filed a police report and is attempting to engage with the attackers to recover the stolen assets, as noted by its team on X (formerly Twitter).
In a separate security breach, the interchain stablecoin protocol Harbor reported being attacked, resulting in the loss of funds from its stable-mint, as well as stOSMO, LUNA, and WMATIC vaults. As of this writing, the total amount of stolen crypto assets remains uncertain. Harbor is reportedly working on tracking the funds and assessing the overall losses.
The incidents follow a series of security breaches within the DeFi ecosystem over recent weeks. On July 30, a vulnerability in three versions of the Vyper programming language led to the theft of over $61 million from stable pools on Curve Finance. Other protocols affected in the past days include Earn.Finance, which saw at least $287,000 worth of ETH stolen, alongside $2.1 million in losses experienced by Zunami Protocol due to another exploit.
Magazine: DeFi Dad, Hall of Flame: Ethereum is ‘woefully undervalued’ but growing more powerful
