Non-custodial decentralized finance (DeFi) protocol, Arcadia Finance, is the latest victim of a 5,000 exploit that occurred on both the Ethereum and Optimism networks. Confirming the hack, Arcadia revealed that it is working with security partners to minimize the damage after pausing the contracts. The platform has also roped in law enforcement to deal with the issue. Blockchain security expert PeckShield was first to notify the attack on Arcadia and claimed that it was caused due to “the lack of untrusted input validation,” which is exploited to drain funds from both darcWETH and darcUSDC vaults. The firm highlighted another vulnerability in the DeFi protocol – “lack of reentrancy protection” – which enables instant liquidation to bypass the internal vault health
Topics:
Chayanika Deka considers the following as important: AA News, defi, Hacking, social
This could be interesting, too:
Chayanika Deka writes Ethena Labs Launches USDtb, Backed by BlackRock’s BUIDL Fund
Wayne Jones writes Prometheum Files Lawsuit Against Critic Matthew Blumberg Amidst Scam Accusations
Wayne Jones writes USDT Transfer Volume on TRON Reaches All-Time High of 7.2B
Chayanika Deka writes Lido Announces Phase-Out of Polygon Liquid Staking Protocol After Community Vote
Non-custodial decentralized finance (DeFi) protocol, Arcadia Finance, is the latest victim of a $455,000 exploit that occurred on both the Ethereum and Optimism networks. Confirming the hack, Arcadia revealed that it is working with security partners to minimize the damage after pausing the contracts.
The platform has also roped in law enforcement to deal with the issue.
- Blockchain security expert PeckShield was first to notify the attack on Arcadia and claimed that it was caused due to “the lack of untrusted input validation,” which is exploited to drain funds from both darcWETH and darcUSDC vaults.
- The firm highlighted another vulnerability in the DeFi protocol – “lack of reentrancy protection” – which enables instant liquidation to bypass the internal vault health check.
- The stolen funds from the Optimism network portion were washed on the controversial coin mixer, Tornado Cash. But the Ethereum portion of the stolen funds, worth over $103,000, continued to remain parked in a flagged wallet address.
- Arcadia has not yet confirmed the validity of the root cause identified by PeckShield, but it said that an investigation is being carried out. The protocol’s latest statement read,
“We will continue to work with our security partners, law enforcement, and the broader community to resolve this as best we can. Our number one priority is recovering funds for Arcadia protocol users.”
- Arcadia is a non-custodial, permissionless protocol that was launched on Ethereum and Optimism in March this year. The platform essentially enables users to trade spot with leverage and boost staked ether.
- The latest exploit surfaces amid rampant hacks recorded in the digital asset sector.
- In the first of 2023 alone, Web3 security firm Beosin identified a loss of $470 million across 108 DeFi protocol attacks.