BPOI Banner
DeFi Platform Loses $6M In Breach, Is North Korea Involved? DeFi Platform Loses $6M In Breach, Is North Korea Involved?

DeFi Platform Loses $6M In Breach, Is North Korea Involved?


Este artículo también está disponible en español.

Decentralized Finance (DeFi) platform Delta Primes suffered a security breach on Monday, affecting the protocol’s users. The attack took $6 million from the project’s pools and is under investigation. However, on-chain investigators suspect it could be linked to North Korean hackers and be part of a larger-scale scheme.

Related Reading

Hackers Drain $6 Million From DeFi Protocol

On Monday morning, cyber security platform Cyvers Alerts informed the community about the ongoing attack on DeFi borrowing protocol Delta Primes. The initial report revealed that Cyvers’ system had detected multiple suspicious transactions involving the project on the Arbitrum chain.

The transactions suggested the DeFi protocol’s team had lost the private key, initially losing $4.5 million from the DPUSDC, DPARB, and DPBTCb pools. The suspicious draining address immediately swapped the USDC for Ethereum (ETH).

In the next hour, Cyvers detailed that the attackers had seemingly changed the proxy, pointing to a malicious address. Other reports explained that “this malicious contract can inflate the deposited amount of the hacker on all pools.”

The attackers drained another $1.48 million from the pools before Delta Prime’s team regained control. Two hours after the initial reports, the DeFi platform addressed the incident.

Per the post, DeltaPrime Blue, on the Arbritum chain, was attacked and drained for $5.98 million. The team confirmed that the attack was due to a compromised private key, with the cause still being investigated.

Delta Prime’s team also assured users that DetalPrime Red, on Avalanche, was safe from this attack, detailing that the “implementation here is covered solely by multisigs and cold wallets (as it should be).”

Additionally, the post claimed that the risk was already contained, reassuring its community that the DeFi protocol’s insurance pool would cover potential losses:

The risk is contained, we’re working on asset-retrieval and the insurance pool will cover any potential losses where possible / necessary. Additionally, we’re looking into other ways to reduce user losses to a minimum.

Are North Korean Hackers Responsible?

Despite the quick response, some users expressed their concerns about the incident. When questioned about it, the team explained that there were no timelocks for DeltaPrime Blue:

This is exactly what timelocks are for. The switch from this hot & non-timelocked owner to a cold timelocked owner should have been done on Arbitrum like it was on Avalanche (and like other initial owners on Arbi)

One community member criticized the team for not having the same security measures on DeltaPrime Blue and Red, stating there was no excuse for the mistake. Moreover, on-chain sleuth ZachXBT suggested that the attack could be linked to a larger-scale problem.

A month ago, Zach assisted another team with another crypto hack. The investigation unveiled that over 25 projects within the space had unknowingly hired multiple IT workers from North Korea using fake identities as developers.

Related Reading

Today, the crypto detective revealed that the DeFi protocol was among the teams he alerted about the North Korean IT workers in August. He also noted that the method used for Delta Prime’s exploit was similar to the hack he originally assisted.

As of this writing, Delta Prime’s team has not addressed the possible link. However, it stated that they would focus on getting the funds back and that “the event isn’t over yet.”

Ethereum is trading at $2,307 in the weekly chart. Source: ETHUSDT on TradingView

Featured Image from Unsplash.com, Chart from TradingView.com

Source link

Rubmar Garcia

https://www.newsbtc.com/news/defi-platform-delta-primes-loses-6-million-in-security-breach-is-north-korea-involved/

2024-09-17 01:30:22

bitcoin
Bitcoin (BTC) $ 96,072.74 0.74%
ethereum
Ethereum (ETH) $ 3,347.28 0.06%
tether
Tether (USDT) $ 0.999082 0.02%
xrp
XRP (XRP) $ 2.22 0.69%
bnb
BNB (BNB) $ 665.89 0.69%
solana
Solana (SOL) $ 186.83 2.41%
dogecoin
Dogecoin (DOGE) $ 0.320223 1.18%
usd-coin
USDC (USDC) $ 1.00 0.03%
cardano
Cardano (ADA) $ 0.911229 1.37%
staked-ether
Lido Staked Ether (STETH) $ 3,344.99 0.12%
tron
TRON (TRX) $ 0.249207 1.45%
avalanche-2
Avalanche (AVAX) $ 37.76 0.97%
chainlink
Chainlink (LINK) $ 23.28 5.27%
the-open-network
Toncoin (TON) $ 5.49 3.49%
wrapped-steth
Wrapped stETH (WSTETH) $ 3,973.22 0.03%
shiba-inu
Shiba Inu (SHIB) $ 0.000022 2.62%
sui
Sui (SUI) $ 4.41 2.46%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 96,011.72 0.48%
stellar
Stellar (XLM) $ 0.364228 3.16%
polkadot
Polkadot (DOT) $ 7.08 2.04%
hedera-hashgraph
Hedera (HBAR) $ 0.268397 6.46%
hyperliquid
Hyperliquid (HYPE) $ 28.70 15.27%
weth
WETH (WETH) $ 3,350.78 0.14%
bitcoin-cash
Bitcoin Cash (BCH) $ 454.35 0.35%
leo-token
LEO Token (LEO) $ 9.37 0.60%
uniswap
Uniswap (UNI) $ 14.30 4.44%
litecoin
Litecoin (LTC) $ 105.08 5.55%
pepe
Pepe (PEPE) $ 0.000018 4.74%
wrapped-eeth
Wrapped eETH (WEETH) $ 3,535.53 0.23%
near
NEAR Protocol (NEAR) $ 5.19 4.42%
ethena-usde
Ethena USDe (USDE) $ 0.99884 0.06%
bitget-token
Bitget Token (BGB) $ 4.14 1.00%
usds
USDS (USDS) $ 1.00 0.04%
aptos
Aptos (APT) $ 9.36 0.27%
aave
Aave (AAVE) $ 332.99 11.47%
internet-computer
Internet Computer (ICP) $ 10.30 2.96%
crypto-com-chain
Cronos (CRO) $ 0.157289 0.67%
polygon-ecosystem-token
POL (ex-MATIC) (POL) $ 0.489339 2.98%
mantle
Mantle (MNT) $ 1.20 4.42%
ethereum-classic
Ethereum Classic (ETC) $ 26.74 2.93%
vechain
VeChain (VET) $ 0.04731 4.39%
render-token
Render (RENDER) $ 7.28 3.54%
mantra-dao
MANTRA (OM) $ 3.73 3.32%
whitebit
WhiteBIT Coin (WBT) $ 24.46 0.85%
monero
Monero (XMR) $ 191.28 2.15%
bittensor
Bittensor (TAO) $ 464.30 2.24%
dai
Dai (DAI) $ 0.99946 0.07%
fetch-ai
Artificial Superintelligence Alliance (FET) $ 1.30 3.03%
arbitrum
Arbitrum (ARB) $ 0.770137 3.08%
ethena
Ethena (ENA) $ 1.10 8.29%