WEB3
by BSCN
January 4, 2024
Security analysts PeckShield and BlockSec confirmed the incident, attributing it to a critical vulnerability in Gamma's accounting mechanism.
Decentralized finance (DeFi) protocol Gamma Strategies finds itself in the spotlight as security analysts report a significant exploit leading to losses of approximately $3.4 million.
Both PeckShield and BlockSec, reputable security firms, have confirmed the incident, highlighting a breach that allowed a hacker to abscond with 1500 ether.
"The root cause stems from the inconsistency between the accounting mechanisms for depositing and withdrawing used by Gamma Strategies, which results in a discrepancy between the liquidity and the shares," explained BlockSec founder Yajin Zhou to The Block. "Exploiting this, the attacker could withdraw an excessive amount of tokens."
Gamma Strategies, in a recent update, outlined the root cause of the exploit and detailed steps to prevent a recurrence.
The vulnerability lay in the price change threshold setting, allowing for a significant manipulation of prices in certain vaults. A third-party code review before reopening deposits was identified as one of the corrective measures, as well as a commitment to maximize recovery for affected users.
The breach's severity is underscored by the insights from BlockSec, which identified a critical vulnerability in Gamma's "accounting mechanism."
Amidst the unfolding drama, a fraudulent social media account with verified status impersonated Gamma, directing investors to a phishing website. Notably, this imposter account garnered more attention than Gamma's cautionary message about the breach.
The Gamma Protocol exploit adds to the grim tally of cryptocurrency sector hacks. In 2023, the industry suffered losses nearing $1.8 billion, with major incidents concentrated in the latter half of the year.
The Mixin platform, in September, grappled with a $200 million loss, unable to identify the attacker or retrieve the funds. Despite challenges, Mixin pledged to compensate users for half of their lost holdings.
Notable breaches in 2023 also included a security incident at Poloniex, initially reported at $33 million but later adjusted to over $120 million. The crypto gambling platform Stake faced a $41 million theft in September, contributing to the industry's growing concerns about security.
Disclaimer
Disclaimer: The views expressed in this article do not necessarily represent the views of BSCN. The information provided in this article is for educational and entertainment purposes only and should not be construed as investment advice, or advice of any kind. BSCN assumes no responsibility for any investment decisions made based on the information provided in this article. If you believe that the article should be amended, please reach out to the BSCN team by emailing [email protected].
Latest News
2h : 10m ago
Ethereum Foundation Allocates 50,000 ETH to Strengthen Its DeFi Ecosystem Participation
4h : 55m ago
Trump-Backed World Liberty Financial Makes Major Crypto Purchases to Mark Inauguration
6h : 10m ago
Trump Expected to Sign Executive Orders Easing Bank Ownership of Crypto Assets: Report
7h : 10m ago
Mark Uyeda Named Acting SEC Chair After Gary Gensler Resigns
January 20, 2025
Students for Trump Co-founder Under Fire After Selling Half of 'TikTok' Memecoin
January 20, 2025
Trump's World Liberty Financial Hits $254M Token Presale Milestone
January 20, 2025
Melania Trump Launches $MELANIA Meme Coin: What You Need to Know
January 20, 2025
Donald Trump's Official $TRUMP Memecoin: What We Know