暗号資産購入
マーケット
スポット
先物
金融
特別企画
さらに
reward-center新規登録ゾーン
ホーム速報詳細
Analysis: Summer.fi $6 million Hack Linked to Flash Loan Exploit
  • ARK0%
  • DAI0%

BlockBeats News, July 6th, the DeFi yield optimization protocol Summer Finance (Summer.fi) reportedly suffered a security attack, with on-chain analytics firms estimating a loss of around $6 million.

Blockchain security company Blockaid was the first to discover this security incident. Cyvers stated that the attacker allegedly exploited a vulnerability in the protocol's Share accounting mechanism, conducted an attack through price manipulation, then exchanged the stolen assets of approximately $6 million into the DAI stablecoin and transferred them to the attacker's controlled address.

CertiK further analyzed that the attacker utilized approximately $65.4 million flash loan, manipulated the Lazy Summer Protocol's treasury asset valuation logic under Summer.fi, and ultimately, after depositing around $64.8 million, successfully redeemed assets of about $70.9 million, resulting in a profit of around $6 million.

It is reported that the vulnerability involves the Fleet Commander contract, which manages the protocol's treasury assets, regarding the asset calculation logic for totalAssets(). The attacker accumulated a specific treasury position in advance and influenced asset calculation by donating assets to the Ark contract, thus completing the arbitrage.

As of the time of reporting, Summer.fi has not yet officially confirmed this attack incident through official channels, and the root cause of the vulnerability is still under investigation.

ソース:BlockBeats

免責事項:現在のコンテンツは第三者の視点に基づくもの、または第三者の視点からAIが直接翻訳したものです。CoinExはコンテンツの信頼性、正確性、独創性を保証するものではなく、CoinExからの投資アドバイスを構成するものではありません。暗号資産の価格変動は急激に変動します。潜在的なリスクにご注意ください。

検索上位
  • コインリスト
    価格
    24時間価格変動