$20M exploit cripples Sonne Finance, hacker in no mood for negotiation

cyptouser6 months agoCryptocurrencies News93
55966e89>

Lending protocol Sonne Finance was forced to pause operations after suffering a hack that drained $20 million worth of cryptocurrencies from the market.

On May 14, around 10:30 pm UTC, Web3 security firm Cyvers detected an ongoing attack on Sonne Finance’s USD Coin (USDC) and Wrapped Ether (WETH) contracts.

However, when Sonne Finance became aware of the situation 25 minutes later, the hacker had already stolen $20 million in WETH, VELO (VELO), soVELO and Wrapped USDC (USDC.e).

Source: Sonne Finance

On May 15 at 12:11 am UTC, Sonne Finance announced on X that “All markets on Optimism have been paused.” Soon after, the protocol partnered with Cyvers to investigate the situation further.

Sonne is currently exploring all options to retrieve the stolen funds, including negotiating a bug bounty for the hacker. In such situations, the hacker returns most of the stolen funds and keeps roughly 10% of the loot as a reward for finding a security flaw.

However, the hacker seems to be in no mood for negotiations. According to blockchain investigator PeckShield, the exploiter has already moved a large chunk of the loot ($7.8 million) to a new wallet address.

Source: PeckShield

The exploiter then swapped 59 WBTC for roughly 1,185 ETH and 183,000 Dai (DAI). The move suggests an intent to siphon the stolen funds through a privacy protocol like Tornado Cash to deter traceability.

Sonne Finance’s post-mortem found that a donation attack was conducted on Sonne’s Compound v2 forks, which had a known bug, according to X community member PoorBabyCorn.

They accused Sonne Finance of using Compound v2 despite knowing the risks and asked, “If this isn’t a premeditated backdoor, what is?”

In parallel, the main hedge fund of crypto institutional investment firm BlockTower Capital has reportedly been exploited and partially drained.

The funds have not been recovered, and BlockTower has employed blockchain forensic analysts to trace the funds and determine how they were breached. The exploiter has also not been arrested, Bloomberg reported on May 15, citing people familiar with the matter.

Related: Stolen Poloniex Ether worth $53M never made it back to the exchange

Its partners have been informed about the incident. It reportedly has $1.7 billion in assets under management.

BlockTower did not immediately respond to Cointelegraph’s request for comment.

In February last year, BlockTower seemingly lost around $1.5 million in the $2 million exploit of the multichain exchange aggregator Dexible.

Dexible said that around 85% of the stolen funds were from a “few big whales.” On-chain intelligence platform Arkham Intelligence labeled a wallet drained of $1.5 million as belonging to BlockTower.

Magazine: ‘Sic AIs on each other’ to prevent AI apocalypse: David Brin, sci-fi author

The content on this website comes from the Internet. Due to the inconvenience of proofreading the authenticity and accuracy of the copyright or content of some content, it may be temporarily impossible to confirm the authenticity and accuracy of the copyright or content. For copyright issues or other issues caused by this, please Call or email this site. It will be deleted or changed immediately after verification.

related articles

Australia poised for ‘inflection point’ of crypto demand: Kraken Aus CEO

Australia poised for ‘inflection point’ of crypto demand: Kraken Aus CEO

25cc9d4a˃Australia’s crypto industry is in a good spot to benefit from a global “inflection point” f...

Binance sued in Canada for securities law violations

1205f261˃Cryptocurrency exchange Binance has been slapped with a new class-action lawsuit in Canada,...

Singapore revises Payments Service Act to include cross-border transfers

The Monetary Authority of Singapore (MAS) has significantly amended its Payments Service Act (PSA) t...

Crypto firm 7RCC is quietly advancing its eco-conscious spot Bitcoin ETF

Crypto firm 7RCC is quietly advancing its eco-conscious spot Bitcoin ETF

b98df8a0˃Crypto firm 7RCC is one step closer to launching its environmentally-conscious spot Bitcoin...

New zero fee standard for Bitcoin ETFs creates cheap custodial alternative to exchanges

New zero fee standard for Bitcoin ETFs creates cheap custodial alternative to exchanges

The competition among spot Bitcoin ETFs is seriously heating up with Grayscale outflows declining, b...

OpenAI developing tool with 99% accuracy in detecting AI-generated images

OpenAI is working on a tool boasting 99% reliability for detecting AI-generated images, Bloomberg re...