Hackers withdrew $265 000 from Kyber Network’s liquidity protocol
The attackers injected malicious code into the platform’s user interface
02.09.2022 - 10:45
217
2 min
0
What’s new? On September 1, Kyber Network’s DeFi liquidity protocol was subjected to a hacker attack that resulted in attackers withdrawing about $265 000 in cryptocurrency. According to the company’s announcement, the vulnerability originated in the frontend of the KyberSwap exchange, after which the developers suspended its operation to investigate. The project team promised to reimburse the amount of funds lost.
1/ ❗️Notice of Exploit of KyberSwap Frontend:We identified and neutralized an exploit on the KyberSwap frontend. Affected users will be compensated. We have summarized the details in this thread⬇️— Kyber Network (@KyberNetwork) September 1, 2022
Details of the hack. Kyber Network developers reported that they were able to detect malicious code in the Google Tag Manager (GTM), which automatically approved transactions, allowing hackers to transfer user funds to their addresses.
After disabling the user interface, the project team managed to fix the vulnerability and user funds are now safe. In this, Kyber Network noted that the embedded script was aimed at the wallets of large investors with large amounts of money in their accounts.
What is Kyber Network? It is a multi-chain DeFi protocol for trading cryptocurrencies and providing liquidity. Kyber provides connectivity between various blockchains and other liquidity protocols. The project is managed by its own decentralized community, KyberDAO, and has the native token KNC. As of September 2, 10:10 UTC, the asset is trading at $1,78, and the token gained 3,74% in the past 24 hours, according to CoinMarketCap.
In August, Brazilian crypto lending platform BlueBenx blocked all operations after hackers withdrew $32 million from the protocol. However, users questioned the veracity of this report, as details about the hack were never released. The company also reported that it was laying off most of its employees.
Useful material?
Market
Users who have experienced withdrawal problems in the last two days will be eligible to participate
Mar 28, 2024
Market
Last July, a criminal investigation into the exchange was opened by the US authorities
Mar 27, 2024
Market
The unrealized profit from the deal was $8,9 million
Mar 26, 2024
Incidents
The phasing out began on March 25
Mar 25, 2024
Crypto regulations
The new measures must go through additional stages of approval
Mar 25, 2024
Incidents
The popularity of this kind of project launch format has already led to blockchain overload
Mar 20, 2024