Fun

Li.Fi releases incident report following $11M hack

News Feed - 2024-07-19 04:07:26

Vince Quill13 hours agoLi.Fi releases incident report following $11M hackThe team also announced it was working on a voluntary compensation plan to reimburse 100% of funds to users affected by the exploit.848 Total views5 Total sharesListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksFollowing the $11.6 million exploit of the Li.Fi protocol, an API used to bridge and swap digital assets across blockchains, the Li.Fi team released an update outlining the technical details of the breach.


According to the security update, the deployment of a new smart contract facet was ground zero forthe malicious attack. A vulnerability in the code allowed users calling the smart contract to initiate calls to any contract without prior validation.


This function is a result of code taken from the LibSwap library, used to facilitate calls between decentralized exchanges, service providers, and clients to coordinate the asset bridging and swapping processes.


Normally, these calls are screened against whitelisted addresses to ensure validation. However, Li.Fi explained that human error in deploying the offending smart contract facet was the root cause of the vulnerability exploited by the malicious actor.


The Li.Fi team confirmed the attack occurred on the Ethereum and Arbitrum networks and affected 156 wallets with the “infinite approvals” option turned on. Users without this option turned on were not affected by the exploit.Source: Li.Fi protocol


In statements to Cointelegraph, spokespeople for Li.Fi said they contained the exploit, addressed the critical vulnerability, and contacted the proper law enforcement authorities to trace stolen funds. At the time of this writing, the issue has been fixed, and Li.Fi is operating normally.


Related: Lazarus is moving millions from $305M DMM Bitcoin hack — ZachXBTNot the first time


In March 2022, Li.Fi was hit by a similar exploit affecting users with the “infinite approval” option turned on. The hackers drained $600,000 from the protocol from 29 wallets before the vulnerability was addressed.


The protocol was quick to reimburse investors for their losses, refunding 24 wallets directly from its treasury and offering the remaining five wallets a voluntary compensation plan akin to that received by early angel investors of Li.Fi.Crypto hacks put the damper on the industry in 2024


Unfortunately, hacks and exploits continue to plague the crypto industry and the decentralized financial sector, in particular.A chart comparing 2022-2024 losses from crypto hacks. Source: TRM.


According to a recent report from security firm Cyvers, 2024 losses from crypto exploits are nearing $1.4 billion, driven primarily by phishing attacks, and have risen sharply since 2023.


Magazine: Best and worst countries for crypto taxes — plus crypto tax tips# Blockchain# Business# Security# Cybersecurity# Hacks# DeFiAdd reaction

News Feed

Crypto Analyst Calls Dogecoin Chart A ‘Beauty’ As Key Indicators Align
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
US Authorities Charge Mango Markets Attacker — Defendant Arrested, Detained in Puerto Rico
US Authorities Charge Mango Markets Attacker — Defendant Arrested, Detained in Puerto Rico The U.S. Securities and Exchange Commission (SEC), the Commodities Futures Trading Comm
David Attlee13 hours agoKazakhstan’s authorities confirm they blocked access to Coinbase: ReportThe authorities cited the Law on Digital Assets, enacted in February 2023, that forbids the issuance and trading of digita
Elliptic Identifies ‘Several Hundred Thousand Crypto Addresses’ Tied to Russia-Based Sanctioned Actors
Elliptic Identifies "Several Hundred Thousand Crypto Addresses" Tied to Russia-Based Sanctioned Actors As the Russia-Ukraine conflict continues, blockchain surveillance companies h
Gareth Jenkinson7 hours agoSSV​.network hits mainnet to increase decentralization of Ethereum staking poolsSSV.network launches a distributed validator technology network with more than 10 staking DApps to help decentr
Bitcoin eyes $58K CME gap next as 8% BTC price rout sees longs 'rekt'
William Suberg7 hours agoBitcoin eyes $58K CME gap next as 8% BTC price rout sees longs "rekt"BTC price weakness takes the market below $59,000 for the first time since mid-July as "relentless" Bitcoin selling
Gareth Jenkinson13 hours agoBinance, CZ paid for defying financial, political status quo — Arthur HayesAccording to Arthur Hayes, global cryptocurrency exchange Binance paid one of the largest corporate fines in histor
Gareth Jenkinson7 hours agoTech firm Republic taps Avalanche for profit-sharing investment noteThe blockchain-based investment note is issued on Avalanche and will automatically distribute profits to holders’ wallets.1
Pundits worry SEC’s Ethereum probe could be used to hold back ETFs
Brayden Lindrea3 hours agoPundits worry SEC’s Ethereum probe could be used to hold back ETFsThe SEC’s reported investigation into the Ethereum Foundation could explain why the regulator hasn’t been forthcoming with
Price analysis 3/25: SPX, DXY, BTC, ETH, BNB, SOL, XRP, DOGE, ADA, AVAX
Rakesh Upadhyay5 hours agoPrice analysis 3/25: SPX, DXY, BTC, ETH, BNB, SOL, XRP, DOGE, ADA, AVAXBitcoin has risen above $70,000, indicating that the bulls are back in the driver’s seat.1875 Total views9 Total sharesL
Bitcoin investment product inflows topped $1B as BTC rallied to $66K — CoinShares report
Nancy Lubale8 hours agoBitcoin investment product inflows topped $1B as BTC rallied to $66K — CoinShares reportInvestors piled into Bitcoin investment funds and crypto ETPs, with more than $1 billion in inflows over th
Ethereum Classic 51% Attack: Okex Crypto Exchange Suffers $5.6 Million Loss, Contemplates Delisting ETC
Ethereum Classic 51% Attack: Okex Crypto Exchange Suffers $5.6 Million Loss, Contemplates Delisting ETCCryptocurrency exchange Okex reveals it suffered the $5.6 million loss as a re