DAO Maker crowdfunding platform loses $7M in latest DeFi exploit

Published at: Aug. 12, 2021

Hackers have stolen funds out of more than 5,000 user accounts with crowdfunding platform DAO Maker, a site aimed at raising money for crypto projects.

According to a report from DAO Maker CEO Christoph Zaknun, hackers were able to remove roughly $7 million in USD Coin (USDC) from 5,251 user accounts at approximately 1:00 am UTC today. The platform said the attacker used a smart contract exploit to initially steal 10,000 USDC, then made 15 more transactions to acquire additional funds.

"One of the reasons why this did happen is probably that the amount of deposits within the [Strong Holder Offering] contract really exceeded our expectations," said Zaknun in an AMA on Twitch. "Initially, we never expected more than $2.5 million to be deposited in there, but over time, the SHOs became very popular."

DAO Maker claimed users with up to $900 in their accounts “have remained completely unaffected,” with the platform moving the funds into different wallets. However, the project said it would be suspending all deposits pending a full Root Cause Analysis.

Blockchain intelligence firm CipherBlade is conducting an investigation into the hack and has identified a Binance account associated with the attacker. The platform also said it would be exploring compensation for all affected users.

Despite the name, DAO Maker has no apparent connection to MakerDAO, the decentralized finance, or DeFi, protocol behind the stablecoin Dai (DAI).

The attack on the crowdfunding platform comes following one of the largest hacks in the DeFi space. This week, an unknown person used an exploit on cross-chain protocol Poly Network to remove at least $600 million from three chains.

Related: Poly Network hacker returns less than 1% of the $600M theft

In a bizarre twist, the hacker has since returned $258 million of the funds and spoken with Poly Network users directly in a Wednesday AMA using embedded messages in Ethereum transactions. They seemed to have not had a plan to transfer the funds after successfully stealing them, and claimed to do the hack “for fun” because “cross-chain hacking is hot.”

Tags

Business

Defi

Hacks

Hackers

Makerdao

Related Posts

DeFi surpasses $7B in locked funds, but just six projects hold 90% of capital

The total value of capital locked in decentralized finance protocols has increased 271% in less than two months to surpass $7 billion for the first time, according to DeFi Pulse. If the current rate of growth continues, DeFi will be worth more than $27 billion by the end of 2020. Aave currently comprises the largest DeFi project, with $1.51 billion locked, followed by MakerDAO with $1.42 billion, Curve Finance with $1.15 billion, yEarn Finance with $845 million, Synthetic with $851 million and Compound representing $797 million. Aave recently emerged as the top DeFi project after receiving an Electronic Money Institution …

Business / Aug. 26, 2020

The aftermath of Axie Infinity’s $650M Ronin Bridge hack

In late March, Ronin, an Ethereum sidechain built for the popular play-to-earn nonfungible token game Axie Infinity, was hacked for over 173,600 Ether (ETH) and 25.5 million USD Coin (USDC) for a combined value of over $600 million. The breach on the Ronin bridge was confirmed by Sky Mavis, the developers behind the popular play-to-earn (P2E) game: There has been a security breach on the Ronin Network.https://t.co/ktAp9w5qpP — Ronin (@Ronin_Network) March 29, 2022 The official report from the company noted that the hackers managed to get access to private keys to validator nodes resulting in the compromise of five validator …

Blockchain / April 12, 2022

JP Morgan executes first DeFi trade on a public blockchain: Finance Redefined

Welcome to Finance Redefined, your weekly dose of essential decentralized finance (DeFi) insights — a newsletter crafted to bring you significant developments over the last week. The first week of November proved to be the institutionalization of DeFi markets as major international banks and financial institutions executed and completed their first DeFi transaction. The global financial giant JP Morgan completed its first-ever cross-border transaction using DeFi on a public blockchain with the help of the Monetary Authority of Singapore’s (MAS) Project Guardian. DBS Bank started a trading test of foreign exchange (FX) and government securities using permissioned DeFi liquidity pools. …

Nft / Nov. 4, 2022

Binance and Huobi freeze $1.4M in crypto linked to North Korean hackers

Cryptocurrency exchanges Binance and Huobi have again frozen accounts linked to the $100 million Harmony Horizon bridge attack on Jun. 24, 2022. Around $1.4 million worth of crypto frozen by the trading platforms came from accounts linked to the notorious Lazarus Group operating out of North Korea. The investigation was carried out by blockchain analytics firm Elliptic, according to a report shared by the firm on Feb. 14. However, the firm didn’t state what coins or tokens were frozen. Exchanges @binance and @HuobiGlobal today froze accounts containing $1.4 million stolen by North Korea’s Lazarus Group. This was made possible thanks …

Blockchain / Feb. 15, 2023

Top 7 cybersecurity jobs in high demand

In today’s digital age, cybersecurity has become a critical aspect of almost every business. Cyber threats are increasing daily, and businesses must take proactive measures to protect their networks and data. As a result, the demand for cybersecurity professionals has skyrocketed. Little Friday humour #meme #cybersecurity @hackurityio pic.twitter.com/MArEpCh03k — Harold De Vries (@devries_harold) February 17, 2023 In this article, we will discuss the top seven cybersecurity jobs that are in high demand. Cybersecurity analyst A cybersecurity analyst is responsible for identifying and mitigating cyber threats to an organization’s network and data. They examine system logs and network traffic to find …

Technology / Feb. 26, 2023