Angriparen hackar Arbitrums Treasure DAO för över 100 NFT:er genom att utnyttja marknadsplatsutnyttjande

Attacker Hacks Arbitrum's Treasure DAO for Over 100 NFT:er genom att utnyttja marknadsplatsutnyttjande

A non-fungible token market platform built on top of Arbitrum called Treasure DAO was hacked on March 3 på 7:33 a.m. (EST), according to a post mortem analysis authored by the security-focused firm Certik. Företaget’s report notes thatover 100 NFTs were stolen in the attack,” as the attacker leveraged a vulnerability in the marketplace’s “buyer buy itemfunction.

Post Mortem Analysis by Certik Shows Arbitrum NFT Trading Platform Treasure DAO Exploited for More Than 100 NFTs

The leading Arbitrum NFT marketplace Treasure DAO was attacked on Thursday after an attacker discovered an exploit that resulted in the loss of “mer än 100 NFTs from unsuspecting users.The post mortem analysis of the attack was sent to News from the blockchain security firm Certik, a company that analyzes, monitors, and assesses smart contracts, blockchain tech, and decentralized finance (defi) protocols.

Treasure DAO, an NFT trading platform on Arbitrum, was exploited by an unknown attacker who took advantage of a flaw in the platforms code,” Certiks analysis details. “The exploit resulted in the loss of more than 100 NFTs from unsuspecting users. After some initial analysis and tracing of the hackers wallet on Twitter, many stolen NFTs were returned.

Dessutom, Certiks analysis of the Treasure DAO situation notes that the protocols native token MAGIC shed over 40% in losses against the U.S. dollar. Treasure DAO co-founder John Patten also twittrade about the event after the attacker stole the funds. “Treasure marketplace is being exploited. Please delist your items. We will cover the costs of the exploitI will personally give up all of my Smols to repair this,” Patten said. The Treasure DAO co-founder added:

I cannot fathom what subhuman targets a fair launch marketplace for robbery, but they will not defeat the community.

Certik Says Ongoing On-Chain Analysis and Pre-Deployment Audits Can Curb Future Blockchain Protocol Exploits

Certik security analysts say that no one knows who was behind the exploit but added that many users weresimply be glad to have their stolen NFTs returned.” Företaget’s post mortem summary of the situation concludes by adding that significant losses can happen by simply exploiting one line of code. The firm wholeheartedly believes on-chain monitoring of specific blockchain protocols and pre-deployment audits can help stop future vulnerabilities.

Se även  Sandlådans poäng $93 Million Investment Leds av Softbank som Metaverse Tokens Thrive

This hack once again highlights the million-dollar ramifications that a single line of code can have,” Certiks report concludes. “A thorough pre-deployment audit paired with ongoing on-chain analysis is the best way for Web3 projects to demonstrate their commitment to security and assure their customers that their funds are safe.

What do you think about the Treasure DAO hack and Certiks post mortem report? Låt oss veta vad du tycker om detta ämne i kommentarsfältet nedan.