19 April 2022

BEANSTALK SECURITY BREACH...Latest Articles TODAY | Bleeping Computer

A post-mortem analysis of the attack from smart contract auditors and developers at Omniscia explains that the hacker managed to steal the assets via a malicious proposal. . .
What happens now 
Beanstalk hasn't shared its plans moving forward, so reimbursing the investors remains an uncertain action.
"We believe there is a need to educate and inform non-technical market participants about the status, scope and limitations of technical audits. Our team is currently working on multiple initiatives aimed at demystifying audits," reads the analysis.
> The platform is still investigating the incident and has openly called the DeFi community and blockchain analytics experts to help them salvage what they can. At the same time, it has also invited the exploiter to negotiate.
. . .Interestingly, PeckShield blockchain analytics reports that the hacker has donated $250,000 of the stolen amount to Ukraine.
 

Beanstalk DeFi platform loses $182 million in flash-loan attack

"The decentralized, credit-based finance system Beanstalk disclosed on Sunday that it suffered a security breach that resulted in financial losses of $182 million, the attacker stealing $80 million in crypto assets.

As a result of this attack, trust in Beanstalk's market has been compromised, and the value of its decentralized credit-based BEAN stablecoin has collapsed from a little over $1 on Sunday to $0.11 right now.

The drop in BEAN's value within a day(CoinGecko)

. . .

Essentially, the attacker allowed themselves to drain all of the protocol's funds to a private Ethereum wallet in an instance, having the power to vote in favor of the action.

A flash loan allows users to borrow a large amount of stablecoins from other traders without offering a collateral (unsecured) and the process of approving a loan and returning it happens in a single transaction on the blockchain, within seconds.

DeFi platforms under fire

A Chainalysis report from last week indicates that DeFi platforms are the primary focus of crypto-heists in 2022, and the Beanstalk incident is yet another confirmation of this trend.

Typically, these hacks occur either via a security breach or an exploit in the code, so flash-loan attacks are likely to became less frequent.

LATEST ARTICLES https://www.bleepingcomputer.com/

No comments: