Fun

Curve Finance awards dev $250K for finding reentrancy vulnerability

News Feed - 2024-05-01 07:05:33

Arijit Sarkar13 hours agoCurve Finance awards dev $250K for finding reentrancy vulnerabilityCurve Finance awarded cybersecurity researcher Marco Croc with its maximum bug bounty award of $250,000 after thoroughly investigating the security flaw.2452 Total views3 Total sharesListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksA security researcher was rewarded $250,000 for discovering a vulnerability that has historically allowed hackers to pull out millions of dollars from cryptocurrency protocols. 


Pseudonymous cybersecurity researcher Marco Croc from Kupia Security identified a reentrancy vulnerability in decentralized finance (DeFi) protocol Curve Finance.


In an X thread, he explained how the bug could be exploited to manipulate balances and withdraw funds from liquidity pools.


Curve Finance acknowledged potential security flaws and “recognized the severity of the vulnerability,” Marco Croc explained. After a thorough investigation, Curve Finance awarded Marco Croc its maximum bug bounty award of $250,000.Source: Curve Finance


According to Curve Finance, the threat was classified as “not as dangerous,” and they believed they could recover the stolen funds in such a case. 


However, the protocol said a security incident of any scale “could have caused serious panic if it had happened.”


Related:Curve Finance debt will cause "one more stress test" in February — Analyst


Curve Finance recently recovered from a $62 million hack in July. As part of returning to normalcy, the DeFi protocol voted to reimburse $49.2 million worth of assets to the liquidity providers (LPs).Source: Curve Finance


On-chain data confirms that 94% of tokenholders approved the disbursement of tokens worth over $49.2 million to cover the losses of the Curve, JPEG’d (JPEG), Alchemix (ALCX) and Metronome (MET) pools.


According to Curve’s proposal, the community fund will supply the Curve DAO (CRV) tokens. The final amount also includes a deduction for the tokens recovered since the incident.


“The overall ETH to recover was calculated as 5919.2226 ETH, the CRV to recover was calculated as 34,733,171.51 CRV and the total to distribute was calculated as 55’544’782.73 CRV,” reads the proposal.


The attacker exploited a vulnerability on stable pools using some versions of the Vyper programming language. The bug made Vyper’s 0.2.15, 0.2.16 and 0.3.0 versions vulnerable to reentrancy attacks.


Magazine:68% of Runes are in the red — Are they really an upgrade for Bitcoin?# Business# Rewards# Awards# Hackers# Hacks# DeFi# Curve FinanceAdd reaction

News Feed
5 Online Casinos That Accept Bitcoin Cash
5 Online Casinos That Accept Bitcoin Cash Digital cash was the original use case for bitcoin, and it remains the primary one for bitcoin cash (BCH) today. The ability to send fun
2020-01-27 20:00 PM
Pro-Bitcoin Miami Mayor Says He Will Take Next Paycheck 100% in BTC
Pro-Bitcoin Miami Mayor Says He Will Take Next Paycheck 100% in BTC The mayor of the U.S. city of Miami says that he is going to take 100% of his next paycheck in bitcoin and becom
2021-11-03 09:30 AM
Jesse Coghlan14 minutes agoBlockchain.com scores payment license from Singapore central bankThe crypto exchange is the 12th to receive a crypto-dealing license in the country allowing it to service accredited investors a
2023-08-08 08:44 AM
Goldman Sachs Predicts Ethereum Could Hit $8,000 This Year
Goldman Sachs Predicts Ethereum Could Hit $8,000 This Year Global investment bank Goldman Sachs is reportedly predicting that the price of ether could rise to $8,000 by year-end. T
2021-11-02 11:30 AM
Brazilian Crypto Investment Platform Bluebenx Backpedals on Hack Reports, States It Was Victim of a Listing Scam
Brazilian Crypto Investment Platform Bluebenx Backpedals on Hack Reports, States It Was Victim of a Listing Scam Bluebenx, a Brazilian crypto company that recently stopped customer
2022-08-22 12:00 PM
Bitcoin Price Retests Support Line After Crash Below $95,000, Here’s The Next Target
Este artículo también está disponible en español. The Bitcoin price has struggled to reclaim previous price highs above $100,000, with bearish sentiment dominating the ma
2024-12-28 09:00 AM
PEPE Midterm Price Prediction: Is A 326% Rally To $0.00003474 Possible From Here?
Este artículo también está disponible en español. A crypto analyst has just unveiled a midterm Pepe price prediction, forecasting that the frog-themed meme coin could see
2024-11-02 03:30 AM
Pandemic Drove Adoption but Information Dissemination Just as Important: Kenya-Based Blockchain Advocate
Pandemic Drove Adoption but Information Dissemination Just as Important: Kenya-Based Blockchain Advocate The adoption of blockchain technology and the use of cryptocurrencies by pe
2021-12-02 22:00 PM
El Salvador launches Bitcoin certifications for civil servants
Arijit Sarkar1 hour agoEl Salvador launches Bitcoin certifications for civil servantsEl Salvador’s government aims to upskill 80,000 employees through a comprehensive Bitcoin certification program, emphasizing strategi
2024-08-21 16:46 PM
China’s Metaverse Gaming Market Might Explode to Over $100 Billion According to JPMorgan
China"s Metaverse Gaming Market Might Explode to Over $100 Billion According to JPMorgan Analysts from JPMorgan believe that the metaverse gaming market could explode in China even
2022-09-14 20:30 PM
Bitcoin Short-Term Holders Move Into Profit: Is Another Sell-Off Looming?
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
2025-08-08 23:00 PM
BlackRock wants to buy spot Bitcoin ETFs for global allocation fund
Helen Partz54 minutes agoBlackRock wants to buy spot Bitcoin ETFs for global allocation fundBlackRock’s Global Allocation Fund aims to buy the company’s own spot Bitcoin ETFs as well as BTC ETFs by other issuers.595
2024-03-08 17:05 PM