SushiSwap’s token launchpad, MISO, hacked for $3M

Published at: Sept. 17, 2021

Joseph Delong, chief technology officer of decentralized finance (DeFi) platform SushiSwap, announced that a hacker compromised the supply chain of its token launchpad platform, MISO.

According to Delong, the “anonymous contractor with the GH handle AristoK3 injected malicious code into the Miso front end,” replacing the auction wallet address with their own and subsequently acquiring 865 Ether (ETH), valued at $3 million. This data can be verified via EtherScan.

The hacker exploited the single target of the Jay Pegs Auto Mart token auction, a parody NFT project imitating the value of a 2007 Kia Sedona.

On what he called the “hardest day of my life so far,” the former senior software engineer at ConsenSys claimed to have gained little support from leading crypto exchanges FTX and Binance in his pursuit of the funds.

We have asked @FTX_Official and @Binance to turn over the attackers KYC information, but they have resisted on this time sensitive matter.The attacker(s) has done work with @Yearn and has approached many other projects. I urge you to check your own front ends for exploits.

— Joseph Delong (@josephdelong) September 17, 2021

Delong publicly expressed his suspicions of the hacker’s identity as blockchain and web developer Eratos. The individual hasn’t yet responded to the accusations.

Just last month, a white hat security programmer miraculously saved the SushiSwap protocol from a potentially disastrous $350-million hack, again through its token launchpad platform, MISO, after discovering a severe vulnerability within the auction contract of the BitDAO token sale.

Fortunately, the exploit wasn’t discovered by loitering hackers, and the sale continued without disturbance. Despite this, the event did showcase — as the white hat described — the “obvious misstep” taken by the team’s security operation.

The DeFi platform announced its highly anticipated “7/20” project update in July this year, revealing the future launch of a new automated market maker called Trident designed to become the most capital-efficient on the market.

Tags
Blockchain
Defi
Hackers
Binance
Sushiswap
Sushi
Related Posts
Bitcoin correction heralded as a ‘BTD’ opportunity, but what about DeFi?
Cryptocurrency investors are still picking up the pieces from the May 19 market-wide implosion which saw Bitcoin (BTC) drop to an unexpected low at $30,000. Post-mortem analysis now shows that the correction catalyzed a mad dash among traders running for the exits as the cascading sell-off resulted in a record 10,525 BTC liquidated across all exchanges. Altcoins were quick to follow suit as they joined Bitcoin in its plunge and hardly a token was left unscathed by the downturn as a wider-sell-off rippled across the market, resulting in a $437 billion haircut to the total market capitalization to $1.672 trillion, …
Blockchain / May 20, 2021
Immunefi partners with Binance Smart Chain on bug bounties to secure BSC projects
Immunefi, a security service outfit that specialized in decentralized finance (DeFi) projects, has inked a collaboration with the Binance Smart Chain. According to a release issued on Friday, Immunefi will work in collaboration with BSC to improve the security of projects on the Binance chain. As part of the partnership, ethical hackers who take part in a campaign to discover vulnerabilities in BSC-based projects will earn rewards. As a security outfit, Immunefi has reportedly paid more than $3 million in bug bounties to ethical hackers. Major BSC protocols such as PancakeSwap, DODO, and Zapper among others are already deploying the …
Blockchain / July 9, 2021
Creator leaves SushiSwap in hot water as multisig revival is on the menu
The high-risk environment around the decentralized finance space and hype for one of its latest offerings, SushiSwap, raises an analogy with a Japanese delicacy called fugu, or pufferfish, which is said to be more deadly than cyanide. Highly trained chefs have been serving up fugu in Japan’s top restaurants for decades, balancing the lives of their customers on the edges of their Yanagiba knives. Any slight error could fatally poison the diner. As such, the cryptocurrency community now also has a proverbial fugu of the DeFi world. In a short space of time, the carbon copy of the popular Uniswap …
Blockchain / Sept. 8, 2020
Here are 6 DEX tokens that have seen exponential growth in 2021
DeFi has steadily grown in prominence over the past year thanks in large part to the strong foundations established by decentralized exchanges (DEX) that enable easy access to the latest tokens and projects. While there have been previous iterations of DEX user interfaces, such as IDEX or Etherdelta, it wasn’t until Uniswap launched that trading in the DeFi network really took off and facilitated the launch of the finance tokens. Here are six of the top-performing tokens in the decentralized finance sector. UNI/USDT Uniswap has risen from the humble beginnings of a simple user interface that allowed for a token …
Markets / Feb. 27, 2021
DEX goals diverge as SushiSwap (SUSHI) and Uniswap (UNI) rally to new highs
Uniswap and SushiSwap have emerged as two of the top decentralized exchanges (DEXs) that are leading the current DeFi bull run higher. Despite a controversial start for SushiSwap, the last few months have seen it catching up to Uniswap in terms of activity on the platform, total value locked, and the price of its SUSHI governance token. A recent report from Delphi Digital took a closer look at the two projects and broke down the fundamental differences in the way that each has diverged in their development since SushiSwap’s vampire attack on Uniswap. SushiSwap originally emerged as a fork of …
Blockchain / Feb. 22, 2021