FBI warns about vulnerabilities of DeFi platforms
Representatives of the bureau have identified the most popular types of attacks on projects related to decentralized finance among attackers
30.08.2022 - 12:20
363
2 min
0
What’s new? The US Federal Bureau of Investigation (FBI) has issued a warning to investors about vulnerabilities in decentralized finance (DeFi) platforms. Representatives of the bureau called three of the most popular types of attacks on such projects and urged citizens to carefully study platforms, protocols, and smart contracts before investing. The FBI also cited data from analysts at Chainalysis, which found that criminals stole $1,3 billion in cryptocurrency in Q1 2022, and 97% of that amount was stolen from DeFi platforms.
What kind of attacks do criminals use? According to the FBI, the first type of attack involves initiating flash loans and exploiting smart contracts, due to which attackers can borrow large numbers of digital assets without collateral.
The second type of attack involves exploiting signature verification vulnerabilities in bridges between networks, allowing all funds to be withdrawn from the project. Another exploit option is to manipulate the price oracle and conduct leveraged trades, in which case hackers benefit from price calculation errors in trades.
The FBI stressed that investing involves risk and called for making sure that the DeFi platform code has been audited by at least one independent company before investing.
In July, representatives of the bureau warned about the emergence of a large number of fraudulent cryptocurrency applications disguised as real companies and financial institutions. The total damage to victims exceeded $42,7 million.
An August study by Chainalysis showed that $2 billion has been stolen from cross-chain protocols since the beginning of the year. These hacks accounted for 69% of all exploits in 2022. Analysts noted that bridges are becoming increasingly attractive to hackers as the volume of assets flowing through them grows.
Useful material?
Incidents
Users were urged to withdraw funds before the site was completely shut down on November 7
May 8, 2024
Market
The outflow persists for four weeks
May 7, 2024
Market
The assets were valued at $630 000 at the time of receipt
May 6, 2024
Incidents
Roger Ver has been accused of not paying taxes
May 1, 2024
Mining
After the publication of the financial report, the company’s shares added 5%
Apr 30, 2024
Market
The commission had previously warned the developer of potential enforcement actions
Apr 29, 2024