Fun

Curve Finance awards dev $250K for finding reentrancy vulnerability

News Feed - 2024-05-01 07:05:33

Arijit Sarkar13 hours agoCurve Finance awards dev $250K for finding reentrancy vulnerabilityCurve Finance awarded cybersecurity researcher Marco Croc with its maximum bug bounty award of $250,000 after thoroughly investigating the security flaw.2452 Total views3 Total sharesListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksA security researcher was rewarded $250,000 for discovering a vulnerability that has historically allowed hackers to pull out millions of dollars from cryptocurrency protocols. 


Pseudonymous cybersecurity researcher Marco Croc from Kupia Security identified a reentrancy vulnerability in decentralized finance (DeFi) protocol Curve Finance.


In an X thread, he explained how the bug could be exploited to manipulate balances and withdraw funds from liquidity pools.


Curve Finance acknowledged potential security flaws and “recognized the severity of the vulnerability,” Marco Croc explained. After a thorough investigation, Curve Finance awarded Marco Croc its maximum bug bounty award of $250,000.Source: Curve Finance


According to Curve Finance, the threat was classified as “not as dangerous,” and they believed they could recover the stolen funds in such a case. 


However, the protocol said a security incident of any scale “could have caused serious panic if it had happened.”


Related:Curve Finance debt will cause "one more stress test" in February — Analyst


Curve Finance recently recovered from a $62 million hack in July. As part of returning to normalcy, the DeFi protocol voted to reimburse $49.2 million worth of assets to the liquidity providers (LPs).Source: Curve Finance


On-chain data confirms that 94% of tokenholders approved the disbursement of tokens worth over $49.2 million to cover the losses of the Curve, JPEG’d (JPEG), Alchemix (ALCX) and Metronome (MET) pools.


According to Curve’s proposal, the community fund will supply the Curve DAO (CRV) tokens. The final amount also includes a deduction for the tokens recovered since the incident.


“The overall ETH to recover was calculated as 5919.2226 ETH, the CRV to recover was calculated as 34,733,171.51 CRV and the total to distribute was calculated as 55’544’782.73 CRV,” reads the proposal.


The attacker exploited a vulnerability on stable pools using some versions of the Vyper programming language. The bug made Vyper’s 0.2.15, 0.2.16 and 0.3.0 versions vulnerable to reentrancy attacks.


Magazine:68% of Runes are in the red — Are they really an upgrade for Bitcoin?# Business# Rewards# Awards# Hackers# Hacks# DeFi# Curve FinanceAdd reaction

News Feed
Don’t miss the bull run that could make Bitcoin great again
Adam Bialy7 hours agoDon’t miss the bull run that could make Bitcoin great againDonald Trump has seen the light when it comes to cryptocurrency. Love him or hate him, that"s a good thing for the industry.2823 Total vie
2024-07-26 01:22 AM
Bitcoin, Ethereum Technical Analysis: BTC, ETH Consolidate to Start the Weekend
Bitcoin, Ethereum Technical Analysis: BTC, ETH Consolidate to Start the Weekend Bitcoin was consolidating above $23,000 to start the weekend, as traders continue to react to yester
2022-08-06 21:30 PM
How PIVX Is Bootstrapping the Revival of Privacy Coins
How PIVX Is Bootstrapping the Revival of Privacy Coins sponsored Throughout its history, PIVX has marked many firsts on the crypto market. These include being the
2021-02-19 23:00 PM
46% of largest crypto airdrops peaked within 14 days — CoinGecko
Ciaran Lyons3 hours ago46% of largest crypto airdrops peaked within 14 days — CoinGeckoAccording to CoinGecko, among the 50 largest crypto airdrops since 2020, almost half of them reached all-time high prices within tw
2024-02-24 14:22 PM
South Africa Leads Crypto Revolution in Africa – Challenges Spur and Slow Adoption
South Africa Leads Crypto Revolution in Africa – Challenges Spur and Slow AdoptionAfricans rank atop global cryptocurrency ownership rates, according to a new report by Arcade Res
2020-05-22 22:35 PM
Prashant Jha10 hours agoCrypto P2P scams in India show digital asset education is neededScammers have made it impossible for Indian crypto traders to conduct P2P trades owing to several police complaints and bank account
2023-08-22 22:01 PM
Former Nintendo President Believes Gaming Experiences Could Benefit From Blockchain And ‘Play to Earn’ Models
Former Nintendo President Believes Gaming Experiences Could Benefit From Blockchain And "Play to Earn" Models Reggie Fils-Aimé, the former president of Nintendo of America, ha
2022-05-03 16:30 PM
Amazon denies using AI voice in Road House remake
Arijit Sarkar13 hours agoAmazon denies using AI voice in Road House remakeRoad House scriptwriter Lance Hill sued Amazon Studios for alleged misuse of AI and copyright infringement during the movie’s upcoming remake.10
2024-02-28 19:40 PM
Australian Court Accepts Cryptocurrency Exchange Account as Security for Legal Costs
Australian Court Accepts Cryptocurrency Exchange Account as Security for Legal Costs A court in Australia has agreed that a crypto exchange account can be used as security for po
2020-02-29 04:40 AM
The Bitcoin halving is coming — How are options traders positioned?
Marcel Pechman7 hours agoThe Bitcoin halving is coming — How are options traders positioned?Crypto traders expect the upcoming halving to send BTC price much higher, but what does the options market say about pro trade
2024-04-10 01:21 AM
How Bitget Became a Dark Horse and Earns Market Share and Trust From Millions in Crypto Winter
How Bitget Became a Dark Horse and Earns Market Share and Trust From Millions in Crypto Winter sponsored 2022 was one of the roughest years in the crypto industry, which saw the col
2023-01-19 21:00 PM
Mike Novogratz Expects Bitcoin to Hit $500K — Says BTC Is a Great Alternative in Economies With Poor Stewardship
Mike Novogratz Expects Bitcoin to Hit $500K — Says BTC Is a Great Alternative in Economies With Poor Stewardship Galaxy Digital CEO Mike Novogratz says bitcoin is a great alterna
2022-03-18 09:30 AM