Fun

Pike Finance clarifies ‘USDC vulnerability’ statement on $1.6M exploit

News Feed - 2024-05-02 04:05:53

Ezra Reguerra1 hour agoPike Finance clarifies ‘USDC vulnerability’ statement on $1.6M exploitPike highlighted that the exploit occurred due to their team’s inadequate integration of third-party technologies such as the CCTP or Gelato Network’s automation services.352 Total views16 Total sharesListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksThe decentralized finance (DeFi) protocol Pike has clarified its previous statement regarding a vulnerability found in USDC Coin (USDC). The clarification comes after the platform experienced a $1.6 million exploit on April 30.


On May 1, Pike published an announcement saying that the exploit was related to a vulnerability on USDC and that USDC’s product offerings had nothing to do with the security lapse that the network suffered.“This exploit is related to the initial USDC vulnerability that was reported last week on the 26th of April.”


However, the DeFi protocol quickly retracted the statement, explaining that the phrase they used did not accurately describe the exploit that transpired.Source: Pike Finance


Pike highlighted that the exploit was caused by lapses in its security measures in its contract functions when handling transfers with the Cross-Chain Transfer Protocol (CCTP), a service provided by USDC-issuer Circle.


Pike clarified that the root cause of the exploit is unrelated to the functionality of Circle’s product offerings.


In a previous announcement, Pike Finance said that its auditing partner had already discovered the vulnerability that caused the first hack on April 26, but their team could not address it. They wrote:“It is important to clarify that this vulnerability was previously identified by our auditing partner, OtterSec. Our developer team was unable to address the identified vulnerability in a timely manner.”


Pike noted that the exploit resulted from their team’s “improper integration” of third-party technologies like the CCTP or Gelato Network’s automation services.


The initial attack led to the theft of $300,000 worth of digital assets.


Related:April sees $25M in exploits and scams, marking historic low ― CertiK


On April 30, an attacker used a vulnerability in the protocol’s smart contract to drain about $1.68 million across Ethereum, Arbitrum and Optimism. In total, the attacker took $1.4 million in Ether (ETH), $150,000 in Optimism (OP) and about $100,000 in Arbitrum (ARB) tokens.


Pike recognized that both attacks were due to the same smart contract vulnerability. The protocol said that the misalignment in the contract eventually allowed the attackers to bypass admin access and withdraw funds.


Even though hacks still plague the crypto space, data shows that losses in crypto-related hacks showed a sharp decline in April compared to February and March.


On May 1, PeckShield reported that losses from hacks in April dropped to $60 million, a steep jump from February’s $360.8 million and March’s $187.6 million.


Magazine:Web3 gaming won’t exist in 5 years, $656K for best crypto game pitch: Web3 Gamer# Hackers# Hacks# DeFiAdd reaction

News Feed

6 Meme Coins That May 100x and Follow in DOGE’s Pawprints
Dogecoin is no longer the sus-looking dog meme we once knew it as; it’s now one of the most profitable investment opportunities available to those in the crypto space. With El
0G Labs raises $35M pre-seed funding from over 40 crypto investors for on-chain AI
Tristan Greene11 hours ago0G Labs raises $35M pre-seed funding from over 40 crypto investors for on-chain AIThe money will go towards building what 0G Labs calls the first modular AI chain.1033 Total viewsListen to artic
Savannah Fortis10 hours agoMastercard combats crypto fraud with latest AI integrationMastercard announced it will integrate a new AI tool to detect and prevent fraud routed through cryptocurrency exchanges.1341 Total vie
Ethereum’s Shapella Upgrade Unlocks Staked Ether, Over 860K ETH Poised for Withdrawal, Price Surges 6%
Ethereum"s Shapella Upgrade Unlocks Staked Ether, Over 860K ETH Poised for Withdrawal, Price Surges 6% On Wednesday, April 12, 2023, at 6:30 p.m. Eastern Time, Ethereum’s Sh
Poloniex, Bittrex Named in Lawsuit Involving the Alleged Tether-Fueled Crypto Pump
Poloniex, Bittrex Named in Lawsuit Involving the Alleged Tether-Fueled Crypto PumpOn April 3, the cryptocurrency community learned about 11 class-action lawsuits against various exe
Tristan Greene6 hours agoUS surveillance and facial recognition firm Clearview AI wins GDPR appeal in UK courtAccording to court documents, the UK commissioner doesn’t have the authority or jurisdiction to cite or fine
Tom Mitchelhill3 hours agoSocialFi app Stars Arena dispels ‘coordinated FUD’ after patching ‘noob’ vulnerabilityA fault in the Stars Arena price function allowed hackers to escape with roughly $2,000; however, th
Helen Partz13 hours agoArbitrum DAO takes $56M of unclaimed ARB as airdrop deadline endsThe amount of unclaimed Arbitrum tokens accounts for 0.69% of ARB’s total supply of 10 billion.3724 Total views9 Total sharesListe
IRS updates draft of crypto reporting form for US taxpayers
Turner Wright2 hours agoIRS updates draft of crypto reporting form for US taxpayersThe latest draft form eliminated asking US taxpayers the time of day a crypto transaction occurred and identifying the “broker type.”
EigenLayer to cough up around 28M more EIGEN after airdrop backlash
Tom Mitchelhill3 hours agoEigenLayer to cough up around 28M more EIGEN after airdrop backlashEigenLayer is handing out an extra 100 EIGEN to 280,000 qualifying wallet addresses after criticism over its first airdrop.1344
Derek Andersen11 hours agoQuantstamp introduces tool to detect protocols’ flash loan attack vulnerabilityThe new service, called Economic Exploit Analysis, uses University of Toronto research and will work on any EVM-c
Sango – The First Digital Monetary System Built on Bitcoin
Sango - The First Digital Monetary System Built on Bitcoin press release PRESS RELEASE.Sango, the Central African Republic’s crypto-initiative, has set off a wave of exciteme