OMNI Suffers 1,300 ETH Exploit
On Sunday, June 10th, blockchain security company PeckShield reported that OMNI had suffered a re-entrancy exploit, through which a hacker had stolen more than 1,300 wETH ($1.4 million USD).
According to a postmortem conducted by BlockSec, the hacker deposited NFTs from the ‘Doodles‘ collection in order to borrow wrapped ETH (wETH). The hacker then used the Doodles NFT acquired with the initial loan as collateral to borrow more wETH.
However, OMNI failed to identify this as a new position, and thus allowed the hacker to withdraw the NFTs without paying back the loan.
No User Funds Were Stolen
According to OMNI, the protocol is still in its beta phase, and the stolen Ether was from internal testing funds. OMNI has since suspended its services, but confirmed that no customer funds were lost in the exploit.
On the Flipside
Why You Should Care
The high levels of activity in the NFT space have made it a prime target for hackers, who seek to exploit the vulnerabilities in NFT protocols.
For more on recent, high-profile NFT hacks check out:
Yuga Labs Discord Server Hacked: NFTs Worth Over 200 ETH Stolen
Beeple’s Twitter (NYSE:TWTR) Account Hacked for $438K in Crypto and NFT Phishing Scam
High Profile Twitter Accounts Hacked, Spreading Azuki NFT Scams
Continue reading on DailyCoin
Source: Cryptocurrency - investing.com
