Orion Protocol, a liquidity aggregator for multiple crypto exchanges, recently suffered an exploit that caused the platform $3 million in losses. The protocol halted operations following the theft, according to PeckShield details. The blockchain securities and data analytics platform released details regarding the attack in one of their recent tweets.
PeckShield revealed that the exploit occurred due to the reentrancy bug. The securities firm also stated that the hack occurred due to insufficient reentry protection. PeckShield also mentioned that the swapThroughOrionPool function allows anyone with crafted tokens to re-enter the deposit asset function to increase their balance without actually spending any funds.
PeckShield also elaborated that the hack initially started on BSC with 0.4 BNB from TornadoCash. The ETH hack then withdraws 0.4 ETH from SimpleSwap. They also highlighted that the hacker made 1,100 ETH from the hack, which was deposited into TornadoCash, and that another 657 ETH is still in the hacker’s account.
How…
The post Orion Protocol Exploited for $3M Due to Reentrancy Bug appeared first on Coin Edition.
See original on CoinEdition
Source: Cryptocurrency - investing.com