Recent research by on-chain aggregator IntoTheBlock shows that the majority of exploits in the decentralized finance (DeFi) space are the result of unaudited projects. With this, the study concludes that while an audit may not guarantee safety, it should certainly be a minimum requirement for DeFi protocols.
The vast majority of DeFi exploits relate to unaudited projects. So while an audit may not guarantee safety, it should certainly be a minimum requirement for DeFi protocols.
— IntoTheBlock (@intotheblock) January 17, 2024
https://t.co/PnlLwP6D07 pic.twitter.com/shbB91FioN
Bungee Exchange, powered by the recently exploited SocketDotTech protocol, has assured users that it is safe to use with all operations restored.
Bungee is FULLY OPERATIONAL & SAFE TO USE.
— Bungee (@BungeeExchange) January 17, 2024
Earlier, the exchange had indicated that since it does not request infinite approvals by default, Bungee users should be largely unaffected. Nevertheless, it paused the affected contracts while resuming bridging on the network.
It comes barely 24 hours after SocketDotTech protocol was exploited, with at least $3.3 million believed to be stolen.
❗️@SocketDotTech / @BungeeExchange is currently under ongoing attack. The loss is about $3.3M!
— Hacken (@hackenclub) January 16, 2024
Check more details below... pic.twitter.com/8z0DibsJmR
Reportedly, 231 wallets were impacted with an average loss of $14,000 each.
SocketDotTech has issued an official statement following the exploit, indicating that the attack affected wallets with infinite approvals to Socket contracts.
In response, all affected contracts have been paused with the protocol committing to keep users informed.
Urgent
— Socket (@SocketDotTech) January 16, 2024
Socket has experienced a security incident which affected wallets with infinite approvals to Socket contracts.
We have identified the issue & have paused the affected contracts.
We’re working on the situation & will keep you informed with regular updates & next steps.
Among the stolen assets include Ethereum (ETH), Polygon (MATIC), Wrapped Bitcoin (WBTC), Wrapped Ether (WETH), and Dai (DAI).
Among the stolen assets pic.twitter.com/Uf52BBfjrr
— Hacken (@hackenclub) January 16, 2024
Blockchain security and data analytics firm PeckShield reported the incident first, calling SocketDotTech's attention to the incident.
Hi @SocketDotTech, you may want to take a look: https://t.co/EQGnWELlie
— PeckShield Inc. (@peckshield) January 16, 2024
According to PeckShield, the bad route exploited in the hack was added 3 days ago and is now disabled. The security firm attributes the attack to "...incomplete validation of user input, which is exploited to steal funds from users who have approved the vulnerable SocketGateway contractocketGateway contract."
The bad actor exploited the mainnet, with users being asked to revoke all addresses as a precaution.
This address has been highlighted as being involved in the attack, with users asked to revoke it as it shows up as Socket: Gateway on Etherscan.
SocketDotTech is an interoperability protocol bringing seamless connectivity across blockchains, while Bungee is a bridge aggregator powered by Socket and enables users to find the best route for bridging.
Bungee finds multiple bridging routes via supported decentralized exchanges (DEXes) and bridges, considering any swaps that may be needed before/after bridging.
Neither SocketDotTech nor Bungee Exchange immediately responded to FXStreet's request for comment.
Information on these pages contains forward-looking statements that involve risks and uncertainties. Markets and instruments profiled on this page are for informational purposes only and should not in any way come across as a recommendation to buy or sell in these assets. You should do your own thorough research before making any investment decisions. FXStreet does not in any way guarantee that this information is free from mistakes, errors, or material misstatements. It also does not guarantee that this information is of a timely nature. Investing in Open Markets involves a great deal of risk, including the loss of all or a portion of your investment, as well as emotional distress. All risks, losses and costs associated with investing, including total loss of principal, are your responsibility. The views and opinions expressed in this article are those of the authors and do not necessarily reflect the official policy or position of FXStreet nor its advertisers. The author will not be held responsible for information that is found at the end of links posted on this page.
If not otherwise explicitly mentioned in the body of the article, at the time of writing, the author has no position in any stock mentioned in this article and no business relationship with any company mentioned. The author has not received compensation for writing this article, other than from FXStreet.
FXStreet and the author do not provide personalized recommendations. The author makes no representations as to the accuracy, completeness, or suitability of this information. FXStreet and the author will not be liable for any errors, omissions or any losses, injuries or damages arising from this information and its display or use. Errors and omissions excepted.
The author and FXStreet are not registered investment advisors and nothing in this article is intended to be investment advice.
Recommended Content
Editors’ Picks
Polygon joins forces with WSPN to expand stablecoin adoption
WSPN, a stablecoin infrastructure company based in Singapore, has teamed up with Polygon Labs to make its stablecoin, WUSD, more useful in payment and decentralized finance.
Coinbase envisages listing of more meme coins amid regulatory optimism
Donald Trump's expected return to the White House creates excitement in the cryptocurrency sector, especially at Coinbase, the largest US-based crypto exchange. The platform is optimistic that the new administration will focus on regulatory clarity, which could lead to more token listings, including popular meme coins.
Cardano's ADA leaps to 2.5-year high of 90 cents as whale holdings exceed $12B
As Bitcoin (BTC) gets closer to the $100,000 mark for the first time — it crossed $99,000 earlier Friday — capital is rotating into alternative cryptocurrencies, creating a buzz in the broader crypto market.
Shiba Inu holders withdraw 1.67 trillion SHIB tokens from exchange
Shiba Inu trades slightly higher, around $0.000024, on Thursday after declining more than 5% the previous week. SHIB’s on-chain metrics project a bullish outlook as holders accumulate recent dips, and dormant wallets are on the move, all pointing to a recovery in the cards.
Bitcoin: Rally expected to continue as BTC nears $100K
Bitcoin (BTC) reached a new all-time high of $99,419, just inches away from the $100K milestone and has rallied over 9% so far this week. This bullish momentum was supported by the rising Bitcoin spot Exchange Traded Funds (ETF), which accounted for over $2.8 billion inflow until Thursday. BlackRock and Grayscale’s recent launch of the Bitcoin ETF options also fueled the rally this week.
Best Forex Brokers with Low Spreads
VERIFIED Low spreads are crucial for reducing trading costs. Explore top Forex brokers offering competitive spreads and high leverage. Compare options for EUR/USD, GBP/USD, USD/JPY, and Gold.