Bitcoin
Bitcoin (BTC)
$63,734.00 -1.11387
Bitcoin price
Ethereum
Ethereum (ETH)
$3,416.41 0.22527
Ethereum price
BNB
BNB (BNB)
$570.22 -0.45907
BNB price
Solana
Solana (SOL)
$158.56 0.66547
Solana price
XRP
XRP (XRP)
$0.5539690 -12.58688
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000172 -8.6444
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000116 -2.57318
Pepe price
Bonk
Bonk (BONK)
$0.0000265 -2.35823
Bonk price
Bitcoin
Bitcoin (BTC)
$63,734.00 -1.11387
Bitcoin price
Ethereum
Ethereum (ETH)
$3,416.41 0.22527
Ethereum price
BNB
BNB (BNB)
$570.22 -0.45907
BNB price
Solana
Solana (SOL)
$158.56 0.66547
Solana price
XRP
XRP (XRP)
$0.5539690 -12.58688
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000172 -8.6444
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000116 -2.57318
Pepe price
Bonk
Bonk (BONK)
$0.0000265 -2.35823
Bonk price
Bitcoin
Bitcoin (BTC)
$63,734.00 -1.11387
Bitcoin price
Ethereum
Ethereum (ETH)
$3,416.41 0.22527
Ethereum price
BNB
BNB (BNB)
$570.22 -0.45907
BNB price
Solana
Solana (SOL)
$158.56 0.66547
Solana price
XRP
XRP (XRP)
$0.5539690 -12.58688
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000172 -8.6444
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000116 -2.57318
Pepe price
Bonk
Bonk (BONK)
$0.0000265 -2.35823
Bonk price
Bitcoin
Bitcoin (BTC)
$63,734.00 -1.11387
Bitcoin price
Ethereum
Ethereum (ETH)
$3,416.41 0.22527
Ethereum price
BNB
BNB (BNB)
$570.22 -0.45907
BNB price
Solana
Solana (SOL)
$158.56 0.66547
Solana price
XRP
XRP (XRP)
$0.5539690 -12.58688
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000172 -8.6444
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000116 -2.57318
Pepe price
Bonk
Bonk (BONK)
$0.0000265 -2.35823
Bonk price

Smart contract exploit in TIME token leads to $188k loss

smart-contract-exploit-in-time-token-leads-to-188k-loss
Edited by
News
Smart contract exploit in TIME token leads to $188k loss

According to CertiK, the TIME token was exploited recently, resulting in a loss of approximately $188k. 

The attack began with the exploiter converting 5 ETH to Wrapped Ether (WETH), and then trading this for over 3.4 billion TIME tokens.

CertiK analysts reported that the exploit’s root cause was the manipulation of the Forwarder contract, which is designed to execute transactions from any address. The attacker crafted a request with a falsified sender address, which they controlled, and a matching signature. This deceptive req passed the Forwarder contract’s verification process.

The attacker leveraged a parsing error, where the TIME contract was deceived into recognizing an attacker-controlled address as legitimate. As a result, the TIME contract erroneously burned a massive amount of tokens from the target pool controlled by the attacker, rather than the intended address.

The attacker burned over 62 billion TIME tokens, leading to a drastic reduction in the token pool. The tokens were then exchanged for a substantial amount of WETH, eventually converting these back to ETH, including a portion used for a bribe in the process.

This incident highlights the underlying vulnerabilities in smart contracts, where even a minor error can lead to substantial financial losses.