The crypto market has been experiencing increased hacking incidents in recent times, leading to substantial losses for several platforms and individuals. In this article, we will delve into the latest events that have taken place in the last 24 hours, offering insights and analysis on each incident.
1. Libertify Hack:
The Libertify hack stands out due to a vulnerability in reentrancy protection that allowed the hacker to exploit the system and mint more shares by re-entering the deposit routine. As a result, approximately 452,000 tokens were lost. A portion of the stolen funds, around 123.8 ETH, was bridged to Ethereum via CelerBridge. Currently, the hacker’s Ethereum address holds a total of approximately 210.7 ETH.
2. Rodeo Finance Hack:
The Rodeo Finance hack, resulting in approximately $1.53 million in losses, is a so-called “ForceInvestment” hack. This type of exploit takes advantage of flaws in the Investor.earn() routine, which enables the hacker to force a swap from USDC to WETH to unshETH. However, the slippage control fails due to a flawed unshETH price oracle. It’s important to note that a correction has been made regarding the total loss, which now stands at 472 ETH, equivalent to around $888,000.
3. PeckShield Alerts:
a) PeckShield has detected an exploit of Libertify, resulting in the theft of approximately $16,000 worth of USDT on the Ethereum network.
b) 65 ETH from the ArcadiaFi exploiter has been transferred to Tornado Cash.
c) Several NFTs, including BEANZ #18313, were stolen by a fake phishing entity on Blur. Additionally, three NFTs, including Azuki #6054, were stolen through a similar phishing attack on OpenSea.
4. CertiKSkynet Alert:
CertiKSkynet highlights a fake XEN crypto airdrop promotion on Twitter. Interested individuals are advised not to interact with the website hxxps://join-xen.com/ as it is connected to a known phishing contract.
The crypto market continues to face security challenges, with hackers utilizing various methods to exploit vulnerabilities. The incidents within the last 24 hours demonstrate the significance of robust security measures and thorough auditing procedures for cryptocurrency platforms and projects. As the industry evolves, it is crucial for participants to remain vigilant and proactive in safeguarding their assets against potential threats.