WEB3
by BSCN
August 14, 2023
The funds stolen from Zunami Protocol were laundered through the mixing service Tornado Cash, emphasizing the sophistication of the attack.
DeFi yield aggregator Zunami Protocol recently found itself in the crosshairs of a malicious exploit, causing potential losses exceeding $2.1 million.
Security firm PeckShield unveiled the breach, shedding light on the gravity of the situation on August 13th, precisely at 10:47 UTC.
Later, Zunami stepped forward and confirmed the unsettling discovery and assured users that the collateral remained intact.
The incident revolved around two pivotal transactions, setting off a flurry of concerns, according to Peckshield. The exploit took a direct aim at Zunami's "zStables" stablecoin pools, and as the dust began to settle, PeckShield estimated a hefty sum of over $2.1 million had been siphoned off from Zunami's Curve Pool.
An adjustment vulnerability allowed the perpetrators to execute this daring heist. Adding a twist, the stolen funds were subjected to a laundering process through Tornado Cash, a mixing service synonymous with the world of cryptocurrencies.
Xian Yu, founder of SlowMist, disclosed an intriguing detail: their team had identified the vulnerability nearly two months prior. The exploit, rooted in price manipulation tactics, had been staring the Zunami Protocol in the face, albeit unnoticed until the breach.
The communication with Zunami protocol about the warning was met with an unpleasant response, according to Xian Yu, leaving a lasting impression of what could have been done better.
Crypto hacking incidents have been taking the limelight recently. Last month Curve Finance was hacked for $24 million, which rattled the whole DeFi space. Another crypto payment provider, CoinsPaid, lost $37 million to hackers in late July.
Latest News
8h : 6m ago
Potential Sell-Off? $16.7M in Seized PlusToken ETH Is on the Move
10h : 36m ago
Thai SEC Proposes Rules Allowing Mutual and Private Funds to Invest in Digital Assets
October 9, 2024
ZachXBT vs. Murad Mahmudov: Doxxing Debate Shakes Crypto Twitter
October 9, 2024
Eighteen Individuals and Entities Charged in Massive Fraud and Crypto Market Manipulation
October 9, 2024
VanEck Expands into Venture Capital with $30M Fund for Fintech, Blockchain, and AI
October 9, 2024
Scroll to Launch Native Token, SCR, with Airdrop on October 22: Details
October 9, 2024
Japan's Largest Telco NTT Digital Joins Injective as the Latest Validator
October 9, 2024
Is Peter Todd the Mysterious Satoshi Nakamoto? New HBO Documentary Raises Controversial Claims