Fun

Defi Platform Cream Finance Hacked, $29 Million Lost

News Feed - 2021-08-31 05:08:59

Defi Platform Cream Finance Hacked, $29 Million Lost


Cream finance, a defi borrowing and lending protocol, has been the victim of a hack that erased more than $29 million from its vaults. The attacker took advantage of a loophole in the implementation for adding the amp token to the protocol. This is the second time the platform has been involved in a hack. The first breach happened in February, when Cream lost $37.5 million. Cream Protocol Suffers Hack


Cream protocol, a defi lending-borrowing platform present on four different chains (Ethereum, BSC, Polygon, and Fantom), suffered a hack Monday that resulted in the loss of $29 million in several cryptocurrencies. The attacker took advantage of a bug caused by the introduction of the amp token into the protocol. According to Peckshield, a blockchain security and data analytics company, the hack was perpetrated in just one transaction, taking advantage of a reentrancy bug present in the code of the amp currency.


This allowed the hacker to re-borrow assets during the transfer before updating the first borrow. The exploit was repeated 17 times and allowed the hacker to get ahold of 418,311,571 amp (worth $25.1 million) and 1,308.09 ethereum (worth $4.15 million). The platform had been audited by Trails Of Bits, a cybersecurity research and consulting firm, prior to the inclusion of the amp token.


Cream declared it stopped the exploit by pausing supply and borrow on amp. The protocol also informed users that no other markets were affected, and that it was expecting to offer a post mortem report at a later date. Not the First Time


This is not the first time Cream has suffered a hacking incident. Less than six months ago, the platform was also affected by a hack that allowed the attacker to withdraw $37.5 million. The hack, using an unreleased version of a contract of Alpha Finance, another defi protocol, exploited a rounding miscalculation in the code and a whitelisting function. After taking control of the funds, the attacker took them to Tornado.cash, a protocol that allows private transactions in Ethereum.


Luckily, no user funds were affected during this first hack. However, it shows that the defi environment is very complex and that even a small change in protocol (like adding a currency or whitelisting another platform) can have a big impact on security in the future.


What do you think about defi-related hacks? Tell us in the comments section below. British Auction House Christie"s to Present Full Set of NFT Curio Cards on October 1 NEWS | 2 hours ago Blockchain.com CFO Says Company Could IPO in "18-Months," Firm"s Balance Sheet Holds BTC, ETH NEWS | 10 hours ago Tags in this story bug, cream finance, DeFi, Exploit, Hack, Peckshield, Trails Of Bits


Image Credits: Shutterstock, Pixabay, Wiki Commons Disclaimer: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article. Read disclaimerShow comments

News Feed

William Suberg41 minutes agoEnd of ‘Uptober’ targets $40K BTC price — 5 things to know in Bitcoin this weekBitcoin holds higher BTC price levels into what looks to be a crunch week for crypto markets across the boa
Marcel Pechman2 hours agoBitcoin price at risk? US Dollar Index confirms bullish ‘golden cross’Concerns over the U.S. dollar’s impact on Bitcoin may be overstated by investors, particularly in the longer term.1597
Bitcoin Risks Turning Bearish Due to Declining Market Health, Says Glassnode
Bitcoin Risks Turning Bearish Due to Declining Market Health, Says GlassnodeBitcoin (BTC) risks sliding back into bearish territory should onchain activity and overall market health
How to add USDT to MetaMask wallet
Dilip Kumar Patairya1 hour agoHow to add USDT to MetaMask walletLearn how to easily transfer USDT to your MetaMask wallet and start using it on various decentralized applications (DApps).297 Total views2 Total sharesList
Yashu Gola9 hours ago‘I just bought SOL’ — Arthur Hayes after Solana price rebounds 500%Hayes may face short-term losses on his Solana buy-in, but the long-term upside looks promising as the cryptocurrency market r
24 Hours of Le Mans Endurance Race Launches NFT Collection Crafted by the Automobilist
24 Hours of Le Mans Endurance Race Launches NFT Collection Crafted by the Automobilist On August 17, 24 Hours of Le Mans, the endurance sports car race held annu
Brayden Lindrea4 hours agoBNB pops after report that DOJ wants $4B settlement with BinanceBNB hit its highest price since June after Bloomberg reported the U.S. Justice Department wanted $4 billion from Binance to end it
‘A Dangerous Looking Moment in Global Economics’ — Veteran Investor Jeremy Grantham Warns S&P 500 Could Plunge Another 26%
"A Dangerous Looking Moment in Global Economics" — Veteran Investor Jeremy Grantham Warns S&P 500 Could Plunge Another 26% Jeremy Grantham, the co-founder of the Boston-based ass
Price analysis 7/15: SPX, DXY, BTC, ETH, BNB, SOL, XRP, TON, DOGE, ADA
Rakesh Upadhyay6 hours agoPrice analysis 7/15: SPX, DXY, BTC, ETH, BNB, SOL, XRP, TON, DOGE, ADABitcoin and altcoin traders set their sight on new all-time highs now that BTC price is back above $63,000.2894 Total views1
IRS Tells Couple With $7 Million in Bitcoin to Liquidate Crypto Assets and Pay off Tax Debt
IRS Tells Couple With $7 Million in Bitcoin to Liquidate Crypto Assets and Pay off Tax DebtThe Internal Revenue Service (IRS) has won a case in which it demanded that a Maryland cou
Tristan Greene3 hours agoAI21 Labs debuts anti-hallucination feature for GPT chatbotsContextual Answers is designed for enterprise but could have far-reaching implications for the generative AI sector.1219 Total views6 T
Tron network exceeds Ethereum revenue over the past 90 days
Vince Quill6 hours agoTron network exceeds Ethereum revenue over the past 90 daysAccording to data from DefiLlama, the Tron network has accrued $1.31 million in network revenue during the past 24 hours alone.884 Total vi