Hacker steals $300 000 from Olympus DAO and returns it hours later
A hacker took advantage of a vulnerability in the smart contract on the bonds of the platform’s native token
23.10.2022 - 07:00
403
2 min
0
What’s new? On October 21, the Olympus DAO protocol was hacked, causing a hacker to withdraw 30 437 of the project’s native tokens OHM (about $300 000 at the time of the attack). According to Decrypt, the developers reported it on their Discord channel. A few hours later, however, the hacker returned all of the stolen assets back. Olympus DAO representatives noted that this bug was not detected by either three auditors or their internal code review.
More details about the hack. According to cybersecurity firm PeckShield, the hacker found a loophole in the parameters of the smart contract of the project Bond Protocol that was used for the pilot launch of OHM bonds. Analysts noted that no vulnerabilities were found in the Olympus DAO code itself.
It seems the related @OlympusDAO's BondFixedExpiryTeller contract has a redeem() function that does not properly validate the input, resulting in ~$292K loss. https://t.co/dkhC5Ex9sz https://t.co/ikidpLyBga pic.twitter.com/wu5tUrepS6— PeckShield Inc. (@peckshield) October 21, 2022
Notably, if the hacker had reported the vulnerability on the Immunefi platform, he could have claimed a reward of up to $3,3 million.
What is known about Olympus DAO? It is a decentralized protocol run by a decentralized autonomous organization (DAO), founded in 2017. According to the developers, the OHM token is resistant to censorship, has high liquidity, and is actively used in Web 3.0. OHM is backed by other digital currencies, such as DAI and FRAX, held in the Olympus treasury.
As of October 22, 12:25 UTC, the OHM token is trading at $9,96, having gained 1,38% per day, according to CoinMarketCap. Its capitalization is $16,56 million.
On October 18, hackers attacked the DeFi platform Moola Market and withdrew assets worth about $8,4 million. They were able to artificially inflate the price of the project’s native token MOO in order to take loans backed by it and take out other assets. After some time, the hackers recovered 93,1% of the stolen cryptocurrencies.
Useful material?
Telegram 
Twitter Market
Project Pyxtrial will also explore tools that will help regulators form policy frameworks based on integrated data
Feb 7, 2023
Incidents
According to the lawsuit, the bank had known about the exchange’s wrongdoing since at least June 2020
Feb 7, 2023
Incidents
According to outlet Baza, Anton Shkurenko was wanted at the request of French investigators
Feb 7, 2023
Market
The expert expects either consolidation or a slight pullback of the first cryptocurrency’s rate
Feb 7, 2023
Trends
VK NFT will also implement the BNB Smart Chain in the near future
Feb 7, 2023
Crypto regulations
The document is designed to legalize the issuance and turnover, as well as the mining of digital assets in the country
Feb 6, 2023
Cryptocurrency rates
-
Bitcoin
$22 921
BTC
-0.74%
-
Ethereum
$1 632.2
ETH
-1.23%
-
Ripple
$0.39
XRP
-1.76%
-
Cardano
$0.39
ADA
-2.25%
-
Dogecoin
$0.09
DOGE
-1.77%
-
Polkadot
$6.68
DOT
-0.77%
-
Litecoin
$98.94
LTC
+1.5%
-
Solana
$10.15
SOL
-9.47%
-
Monero
$166.44
XMR
-0.65%
-
Bitcoin-cash
$133.36
BCH
-0.86%