Bitcoin
Bitcoin (BTC)
$98,218.00 4.16096
Bitcoin price
Ethereum
Ethereum (ETH)
$3,353.24 9.05644
Ethereum price
BNB
BNB (BNB)
$621.26 1.8891
BNB price
Solana
Solana (SOL)
$254.45 7.90993
Solana price
XRP
XRP (XRP)
$1.17 7.33448
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000246 2.09826
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000206 8.61195
Pepe price
Bonk
Bonk (BONK)
$0.0000527 2.26632
Bonk price
dogwifhat
dogwifhat (WIF)
$3.22 3.32496
dogwifhat price
Popcat
Popcat (POPCAT)
$1.57 0.96174
Popcat price
Bitcoin
Bitcoin (BTC)
$98,218.00 4.16096
Bitcoin price
Ethereum
Ethereum (ETH)
$3,353.24 9.05644
Ethereum price
BNB
BNB (BNB)
$621.26 1.8891
BNB price
Solana
Solana (SOL)
$254.45 7.90993
Solana price
XRP
XRP (XRP)
$1.17 7.33448
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000246 2.09826
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000206 8.61195
Pepe price
Bonk
Bonk (BONK)
$0.0000527 2.26632
Bonk price
dogwifhat
dogwifhat (WIF)
$3.22 3.32496
dogwifhat price
Popcat
Popcat (POPCAT)
$1.57 0.96174
Popcat price
Bitcoin
Bitcoin (BTC)
$98,218.00 4.16096
Bitcoin price
Ethereum
Ethereum (ETH)
$3,353.24 9.05644
Ethereum price
BNB
BNB (BNB)
$621.26 1.8891
BNB price
Solana
Solana (SOL)
$254.45 7.90993
Solana price
XRP
XRP (XRP)
$1.17 7.33448
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000246 2.09826
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000206 8.61195
Pepe price
Bonk
Bonk (BONK)
$0.0000527 2.26632
Bonk price
dogwifhat
dogwifhat (WIF)
$3.22 3.32496
dogwifhat price
Popcat
Popcat (POPCAT)
$1.57 0.96174
Popcat price
Bitcoin
Bitcoin (BTC)
$98,218.00 4.16096
Bitcoin price
Ethereum
Ethereum (ETH)
$3,353.24 9.05644
Ethereum price
BNB
BNB (BNB)
$621.26 1.8891
BNB price
Solana
Solana (SOL)
$254.45 7.90993
Solana price
XRP
XRP (XRP)
$1.17 7.33448
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000246 2.09826
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000206 8.61195
Pepe price
Bonk
Bonk (BONK)
$0.0000527 2.26632
Bonk price
dogwifhat
dogwifhat (WIF)
$3.22 3.32496
dogwifhat price
Popcat
Popcat (POPCAT)
$1.57 0.96174
Popcat price

Defi platform Era Lend exploited on zkSync, losses $3.4m in assets

News
Defi platform Era Lend exploited on zkSync, losses $3.4m in assets

CertiK, a leading blockchain security firm, has issued an urgent Skynet Alert after receiving multiple reports of the defi platform Era Lend falling victim to an exploitation on zkSync. 

Losses are currently estimated to be around $3.4 million.

Another hacking

CertiK, a blockchain security technology company that frequently tweets about vulnerabilities, hacks and exploits in the space, identifies the attack as a “read-only reentrancy attack,” strategically targeting the platform’s multi-step processes, allowing the malicious actor to drain the funds while leaving little to no trace.

By definition, a “read-only reentrancy attack” is a method used by hackers to disrupt the natural flow of transactions within a smart contract. The attacker interrupts a series of operations and then manipulates the contract to continue executing malicious actions without updating its state.

https://twitter.com/CertiKAlert/status/1683828335497867264?ref_src=twsrc%5Etfw%7Ct[…]ndation-allocates-50m-investment-on-chain-asset-token-purchases

The report goes on to highlight that the attacker drained funds using two separate transactions from the account 0xf1D076c9Be4533086f967e14EE6aFf204D5ECE7a, in which they found a vulnerability in the callback and _updateReserves function that allowed them to manipulate a contract into reporting old values that had not yet been updated.

The Era Lend team promptly recognized the attack and took immediate action to safeguard their protocol’s zkSync contracts.

The platform then went on to release a statement on Discord that shared that only the USDC pool was compromised and, as a precautionary measure, users should refrain from depositing this asset for the time being.

Since Era Lend is a fork in the Syncswap project, which aims to bring easy-to-use decentralized finance (defi) and scales Ethereum (ETH) to the masses, Certik also suggests that other projects using Syncswap could be targets of the exploit.