All
Contribute!
BlockchainCrypto MarketCryptocurrency

Breaking: Curve Finance pools exploited in over $24M due to reentrancy vulnerability

CoinSurges
By CoinSurges

Share This Post

Several stable pools on Curve Finance using Vyper were exploited on July 30.

Several stable pools on Curve Finance using Vyper were exploited on July 30, with losses reaching $24 million at the time of writing. According to Vyper, its 0.2.15, 0.2.16 and 0.3.0 versions are vulnerable to malfunctioning reentrancy locks. 

“The investigation is ongoing but any project relying on these versions should immediately reach out to us,” Vyper wrote on X.

According to initial investigation, some versions of the Vyper compiler do not correctly implement the reentrancy guard, which prevents multiple functions from being executed at the same time by locking a contract. Reentrancy attacks can potentially drain all funds from a contract.

A number of decentralized finance projects were affected by the attack. Decentralized exchange Ellipsis reported that a small number of stable pools with BNB were exploited using an old Vyper compiler. Alchemix’s alETH-ETH also witnessed $13.6 million outflow, along with $11.4 million exploited on JPEGd’s pETH-ETH pool, and $1.6 million in Metronome’s sETH-ETH pool.

The exploit sparked panic across the DeFi ecosystem, prompting a wave of transactions across pools and a rescue operation from white hats. Data from CoinMarketCap shows Curve Finance’s utility token Curve DAO (CRV) declining over 5% in reaction to the news. CRV’s liquidity has declined significantly in recent months, making it vulnerable to violent price swings, Cointelegraph reported. According to Curve Finance, crvUSD contracts and any pools with it were not affected by the attack.

Curve DAO token prince on July 30, 2023. Source: CoinMarketCap.

Curve Finance is a DeFi protocol that enables the decentralized exchange (DEX) of stablecoins within Ethereum. The protocol has been targeted by a series of incidents within its ecosystem. Just a few days ago, its omnipool platform Conic Finance was exploited for $3.26 million in Ether (ETH), with nearly the entire amount stolen sent to a new Ethereum address in just one transaction.

Magazine: Should crypto projects ever negotiate with hackers? Probably

Read Entire Article
spot_img

Related Posts

Australian Court Rules Against BPS Financial for Unlicensed Crypto Operations

The Federal Court of Australia has ruled against BPS Financial for operating “Qoin Wallet” without proper licenses The Australian Securities and Investments Commission (ASIC) underscores

Bitcoin Price Rejects Key Resistance, Time For Another Drop In BTC?

Bitcoin price started a steady increase above the $62,500 resistance BTC is again struggling to clear the $64,500 and $65,000 resistance levels Bitcoin is showing positive signs and facing hurdles

India Announces ‘Successful’ Crackdown on E-Nugget Scam — Seizes $10M in Crypto From Exchanges

India’s Enforcement Directorate has declared its multi-year crackdown on the “E-Nugget” scam in Kolkata successful The operation has resulted in cash and crypto seizures, along with

Osmosis co-founder Sunny Aggarwal on costumes, Cosmos, and the ‘Bitcoin renaissance’

Even if you’re not an avid ‘Cosmonaut,’ you’re probably familiar with Sunny Aggarwal, the co-founder of Osmosis Labs With an infectious smile and upbeat personality, Sunny’s name is

Sui Surpasses Solana in Daily Transactions Amidst Spam Token Frenzy

Sui, a scalability-focused blockchain, has surpassed Solana, a top 10 cryptocurrency network, in activity levels, registering 41 million transactions on April 3 The activity overheating on Sui is

Blackrock’s BUIDL Fund Overtakes Franklin Templeton to Become Largest RWA Tokenized Offering

Based on the most recent figures, Blackrock’s USD Institutional Digital Liquidity Fund, also known as BUIDL, has expanded to $38176 million, overtaking Franklin Templeton’s onchain investment
- Advertisement -spot_img
Previous article
Only In Crypto: Bankrupt 3AC Founders Launch ‘Justice’ Token Targeted At Terra (LUNA) Whistleblower
Next article
Kenyan Data Regulator Issues Warning as Residents Rush to Get Worldcoin’s ‘Free Money’

Categories:

Hot right now:

Company:

Follow on:

Crypto Coin Live Stats

Coinsurges provides coverage of fintech, blockchain, and Bitcoin, delivering the most recent news and analyses on the future of money. Stay up-to-date with live prices, charts, and trading options for the top exchanges. Keep track of the day's top cryptocurrency gainers and losers, as well as which coins have experienced gains and losses in the past 24 hours.
Trust Coinsurges as your go-to source for all news and updates in the industry.