Fun

Defi Platform Cream Finance Hacked, $29 Million Lost

News Feed - 2021-08-31 05:08:59

Defi Platform Cream Finance Hacked, $29 Million Lost


Cream finance, a defi borrowing and lending protocol, has been the victim of a hack that erased more than $29 million from its vaults. The attacker took advantage of a loophole in the implementation for adding the amp token to the protocol. This is the second time the platform has been involved in a hack. The first breach happened in February, when Cream lost $37.5 million. Cream Protocol Suffers Hack


Cream protocol, a defi lending-borrowing platform present on four different chains (Ethereum, BSC, Polygon, and Fantom), suffered a hack Monday that resulted in the loss of $29 million in several cryptocurrencies. The attacker took advantage of a bug caused by the introduction of the amp token into the protocol. According to Peckshield, a blockchain security and data analytics company, the hack was perpetrated in just one transaction, taking advantage of a reentrancy bug present in the code of the amp currency.


This allowed the hacker to re-borrow assets during the transfer before updating the first borrow. The exploit was repeated 17 times and allowed the hacker to get ahold of 418,311,571 amp (worth $25.1 million) and 1,308.09 ethereum (worth $4.15 million). The platform had been audited by Trails Of Bits, a cybersecurity research and consulting firm, prior to the inclusion of the amp token.


Cream declared it stopped the exploit by pausing supply and borrow on amp. The protocol also informed users that no other markets were affected, and that it was expecting to offer a post mortem report at a later date. Not the First Time


This is not the first time Cream has suffered a hacking incident. Less than six months ago, the platform was also affected by a hack that allowed the attacker to withdraw $37.5 million. The hack, using an unreleased version of a contract of Alpha Finance, another defi protocol, exploited a rounding miscalculation in the code and a whitelisting function. After taking control of the funds, the attacker took them to Tornado.cash, a protocol that allows private transactions in Ethereum.


Luckily, no user funds were affected during this first hack. However, it shows that the defi environment is very complex and that even a small change in protocol (like adding a currency or whitelisting another platform) can have a big impact on security in the future.


What do you think about defi-related hacks? Tell us in the comments section below. British Auction House Christie"s to Present Full Set of NFT Curio Cards on October 1 NEWS | 2 hours ago Blockchain.com CFO Says Company Could IPO in "18-Months," Firm"s Balance Sheet Holds BTC, ETH NEWS | 10 hours ago Tags in this story bug, cream finance, DeFi, Exploit, Hack, Peckshield, Trails Of Bits


Image Credits: Shutterstock, Pixabay, Wiki Commons Disclaimer: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article. Read disclaimerShow comments

News Feed

$102M shorts liquidated as Bitcoin price surpassed $72K
Zoltan Vardai9 hours ago$102M shorts liquidated as Bitcoin price surpassed $72KBitcoin price is now eyeing the $73,000 level, right under its all-time high, where new short positions are beginning to stack up.8263 Total
Bitcoin, Ethereum Technical Analysis: ETH Moves Above $1,800 as BTC Nears $28,000
Bitcoin, Ethereum Technical Analysis: ETH Moves Above $1,800 as BTC Nears $28,000 Ethereum rose above $1,800 for the first time since August, as markets continued to react to the F
Dogecoin Pressing Range Highs – Can Bulls Push DOGE To ATH?
Este artículo también está disponible en español. Dogecoin experienced a modest rally yesterday, breaking past its local highs and reaching $0.484. The move excited the D
Tomer Warschauer Nuni11 hours agoGenerative AI will disrupt blockchain too: Here’s howArtificial intelligence isn’t just generating lots of content these days, but equally, lots of excitement too.1382 Total views3 To
Prashant Jha13 hours agoChinese hackers use fake Skype app to target crypto users in new phishing scamCrypto security firm SlowMist has discovered several wallet addresses linked to a phishing scam that drained hundreds
Crypto Lender Celsius to Be Acquired by Novawulf, Exiting Chapter 11 
Crypto Lender Celsius to Be Acquired by Novawulf, Exiting Chapter 11  Crypto lender Celsius’ committee of unsecured creditors has chosen the digital asset investment firm N
FTX wants to zero out claims on ‘Sam Coins’
Martin Young4 hours agoFTX wants to zero out claims on ‘Sam Coins’Lawyers for FTX say that customer claims for four SBF-linked cryptocurrencies: MAPS, OXY, SERUM, and BOBA should be heavily discounted or reduced to z
Bitcoin price sees oversold bounce to $62K but will it hold?
Nancy Lubale4 hours agoBitcoin price sees oversold bounce to $62K but will it hold?Bitcoin price snaps back above $62,000, but technical traders are unsure whether the BTC downtrend is over.3280 Total views6 Total shares
ClinTex’s Ongoing CTi Presale Gives Unparalleled Access to the $350bn Medical Trials Market
ClinTex’s Ongoing CTi Presale Gives Unparalleled Access to the $350bn Medical Trials MarketBitcoin Press Release:ClinTexannounce details of their CTi Token Presale, which will giv
Bitcoin Could See ‘One Last Shakeout’ In November, Here Are The Levels To Watch
Este artículo también está disponible en español. Bitcoin (BTC) has recorded a remarkable surge in the past 14 days, nearing the $70,000 mark earlier this week. However,
Uganda Central Bank Says It Is Open to Crypto Firms Participating in Regulatory Sandbox
Uganda Central Bank Says It Is Open to Crypto Firms Participating in Regulatory Sandbox The Bank of Uganda (BOU) has hinted that it is open to the idea of crypto firms participatin
Crypto Guru Reveals His Top 10 AI Altcoins For 2025
Este artículo también está disponible en español. Miles Deutscher, a prominent crypto analyst with over 575,000 followers on X (formerly Twitter), has unveiled his top te