Hacker tries to exploit bridge protocol, fails miserably

Published at: Aug. 23, 2022

Cross-chain bridges have increasingly become targeted by malicious entities. However, not all hackers can run away with millions in their exploit attempts. Some end up losing money from their own wallets.

In a Twitter thread, Alex Shevchenko, the CEO of Aurora Labs, told the story of a hacker who attempted to exploit the Rainbow Bridge but ended up losing 5 Ether (ETH), worth around $8,000 at the time of writing.

According to Shevchenko, the hacker has presented a falsified NEAR block to the Rainbow Bridge contract and submitted the required 5 ETH safe deposit. Thinking that the team would be slow to react during the weekend, the attacker timed the exploit attempt on a Saturday.

Despite the hacker's plan, the CEO highlighted that there were automated watchdogs in place that fought off the malicious transaction. Within 31 seconds, the attempt was suppressed, leading to the hacker losing their safety deposit.

Because of the increasing exploit attempts, the CEO noted that their team is considering increasing the amount required for safe deposits. However, the idea was dumped to keep the team wants to stay committed to decentralization as possible.

Shevchenko also left a message to the attacker. The CEO urged the hacker to try doing good for the community by working on bug bounties instead of stealing users' money and having trouble trying to launder the stolen assets.

Related: Hacker tastes own medicine as community gets back stolen NFTs

On June 7, Aurora Labs paid a bug bounty of $6 million to an ethical security hacker who pointed out a critical vulnerability to the Aurora team. The bug was promptly patched, and user funds were secured. If the whitehat hacker decided to exploit the network, over $200 million could have been lost.

Meanwhile, the entities that executed the Ronin bridge hack have transferred the stolen funds into Bitcoin (BTC). Using privacy tools Blender and ChipMixer, the hackers are still trying to spread out the stolen funds in hopes of outmaneuvering the authorities.

Tags

Bitcoin

Defi

Hackers

Near Protocol

Related Posts

Report: Crypto crimes declined in 2020, but DeFi hacks are on the rise

Cryptocurrency-related crimes have slowed down in 2020, but some sectors within the crypto industry have become a new hotbed for criminal activity, a new report says. Citing major crypto analytics firm CipherTrace, Reuters reported on Nov. 10 that total losses from crypto thefts, hacks and fraud dropped from $4.4 billion in 2019 to $1.8 billion over the first 10 months of 2020. CipherTrace CEO Dave Jevans said that the general decline of criminal activity in the crypto industry is a result of increased security measures: “What we have seen is that exchanges and other cryptocurrency players have implemented more security …

Bitcoin / Nov. 10, 2020

April Fools, Celebrity Scams, & Manipulated Markets: Bad Crypto News of the Week

Bitcoin seems to be settling happily above $6,000 and is currently just north of $6,500 again. Let’s hope we’ve seen the last of those $5,000 movements and we’re ready for a steady climb back to double figures before the halving in mid-May. It’s getting closer. In the meantime, the Federal Reserve now appears to have merged into the federal government. An opinion piece in Bloomberg has described how an alphabet soup of financial programs intended to help the economy through the current crisis is allowing the government to buy up securities through the Fed. The result could allow the government …

Bitcoin / April 4, 2020

Transit Swap ‘hacker’ returns lion’s share of $23M in stolen funds: Finance Redefined

Welcome to Finance Redefined, your weekly dose of essential decentralized finance (DeFi) insights — a newsletter crafted to bring you significant developments over the last week. The TranitSwap hacker that got away with $23 million has returned 70% of the stolen funds. The return was possible due to quick actions from on-chain data analytic firms who managed to find the hacker’s IP address and other personal details. Another research report from Elliptic suggests that DeFi bridges and decentralized exchanges (DEX) have become a new frontier for crypto laundering. Bitcoin.com CEO Dennis Jarvis believes that Bitcoin can be a bridge that …

Adoption / Oct. 7, 2022

Crypto hacks are set to hit all-time highs in 2022, analyst explains

Reducing the amount of hacking by improving cybersecurity should be considered a top priority for the crypto industry, said Kim Grauer, director of research of blockchain intelligence firm Chainalysis. As pointed out by the firm, this year could outpace 2021 in terms of crypto stolen through hacks. The vast majority of these exploits have been targeting the field of decentralized finance. “This can't go on in the industry because people are going to lose faith in investing in DeFi platforms”, Grauer said in an interview with Cointelegraph. Unlike centralized exchanges, which have improved their resiliency to crypto hacks, decentralized protocols …

Blockchain / Oct. 19, 2022

Binance, Huobi team up to recover $2.5M from Harmony One hackers

Security teams at crypto exchanges Binance and Huobi worked together to freeze and recover 121 Bitcoin (BTC) from hackers behind the Harmony bridge exploit. In a tweet, Binance CEO Changpeng Zhao announced that the hackers have tried to launder their funds through the Huobi exchange. After this was detected by Binance, they contacted and assisted Huobi to freeze and recover the digital assets deposited by the hackers. We detected Harmony One hacker fund movement. They previously tried to launder through Binance and we froze his accounts. This time he used Huobi. We assisted Huobi team to freeze his accounts. Together, …

Bitcoin / Jan. 16, 2023