Liquidity hub Serum forked by developers after FTX hack

Published at: Nov. 13, 2022

Solana's developers forked the widely used token liquidity hub Serum, after being compromised by a hack on the bankruptcy exchange FTX on Nov. 11 that led to a series of unauthorized transactions. 

According to pseudonymous developer Mango Max on Twitter, a "verified build of the same version has been made and deployed" on Nov 12. Additionaly, the upgrade authority and fee revenues "have been changed and are now managed by a multi-sig controlled by a team of trusted developers." Serum (SRM) and megaserum (MSRM) tokens, as well as fee discounts were not changed and were working as before.

The development took place on the weekend. Solana co-founder Anatoly Yakovenko tweeted that developers depending on serum were forking the code after the upgraded key was compromised, adding that many "protocols depend on serum markets for liquidity and liquidations."

Afaik, the devs that depend on serum are forking the program because the upgrade key to the current one is compromised. This has nothing to do with SRM or even Jump. A ton of protocols depend on serum markets for liquidity and liquidations.

— toly (@aeyakovenko) November 12, 2022

In a Twitter thread, Mango Max said that the Serum update key was not controlled by the SRM DAO, but by a private key connected to FTX, and no one could confirm who controlled the keys. The private key was necessary to update the original version of Serum, leading the developers to fork the code, as the private key is under FTX control. 

Mango Max also noted that:

"When I reached out to a couple of people previously involved with Serum, I got answers like: “I wish I had more info to help you, but I really don’t.”

Liquidity providers such as Jupiter, the most popular aggregator on Solana, confirmed turning off Serum as a liquidity source "due to security concerns about upgrade authorities, and we also encouraged all our integrators to do the same." Other projects such as Mango Markets and SolBlaze also announced integration with the new fork.

Confirming that we turned off @ProjectSerum as a liquidity source a few hours ago due to security concerns about upgrade authorities, and we also encouraged all our integrators to do the same.The ecosystem is working on a fork right now, and we will supporting it asap

— Jupiter Aggregator ​ (@JupiterExchange) November 12, 2022

As reported by Cointelegraph, an attack led to $659 million in outflows from FTX and FTX US on Nov 11. FTX US general counsel Ryne Miller confirmed later that the transactions were unauthorized and that FTX US had moved all remaining crypto into cold storage as a precaution.

A blog post from blockchain forensics firm Elliptic suggests that the drain has seen various tokens on Ethereum, BNB Smart Chain and Avalanche removed. Of the $663 million drained, around $477 million is suspected to have been stolen, while the remainder is believed to have been moved into secure storage by FTX.

Tags
Defi
Hacks
Fork
Ftx
Related Posts
DeFi ecosystem still haunted by FTX contagion: Finance Redefined
Welcome to Finance Redefined, your weekly dose of essential decentralized finance (DeFi) insights — a newsletter crafted to bring you significant developments over the last week. The FTX contagion that started in the second week of November is still haunting various crypto protocols in the DeFi ecosystem. The latest to fall prey to the contagion includes the Solana-based decentralized exchange (DEX) Serum, of which Alameda and FTX were backers. Another DeFi crypto trading firm Auros Global missed its principal repayment on a 2,400 Wrapped Ether (wETH) DeFi loan. Looking at some other key news in the DeFi ecosystem, popular DEX …
Blockchain / Dec. 2, 2022
Finance Redefined: Alchemy raises $200M, Bunny goes DAO, Feb. 4–11
Welcome to the latest edition of Cointelegraph’s decentralized finance newsletter. As the DeFi space continues its technical resurgence, essential news on funding, innovation and DAOs continues to drive adoption in what remains a nascent industry. For the full version of this newsletter including longer, more descriptive analysis of the top stories this week, subscribe below: Alchemy raises $200M in latest funding, ACH token soars 77% Web3 platform Alchemy announced the launch of a $200-million Series C funding round this week, giving the company a decacorn status and a valuation of $10.2 billion. The seven-investor round was led by two California-based …
Decentralization / Feb. 12, 2022
Sam Bankman-Fried says he will testify before the US House Financial Services Committee remotely
Continuing his so-called apology tour, Sam Bankman-Fried appeared on a Twitter Spaces chat with Unusual Whales and told nearly 60,000 listeners that he intends to testify at the United States House of Representatives Financial Services Committee remotely on Dec. 13. He was previously confirmed to appear in person. Bankman-Fried, who is allegedly currently located in the Bahamas, missed the deadline to confirm his appearance before the Senate Banking Committee the following day, despite the threat of a subpoena. Despite his frequent public speaking, Bankman-Fried has gone silent on Twitter himself, not posting since Dec. 9, when he indicated his agreement …
Blockchain / Dec. 12, 2022
Ankr says ex-employee caused $5M exploit, vows to improve security
A $5 million hack of Ankr protocol on Dec. 1 was caused by a former team member, according to a Dec. 20 announcement from the Ankr team. The ex-employee conducted a “supply chain attack” by putting malicious code into a package of future updates to the team’s internal software. Once this software was updated, the malicious code created a security vulnerability that allowed the attacker to steal the team’s deployer key from the company’s server. After Action Report: Our Findings From the aBNBc Token Exploit We just released a new blog post that goes in-depth about this: https://t.co/fyagjhODNG A pic.twitter.com/d6psUbpxNY …
Defi / Dec. 21, 2022
Crypto exploit losses in January see nearly 93% year-on-year decline
Aside from the bullish crypto market rally in January, there’s been more positive industry news as the month saw a decline in losses from exploits compared to the same time last year. According to data from blockchain security firm PeckShield on Jan. 31, there were $8.8 million in losses from crypto exploits in January. There were 24 exploits over the month, with $2.6 million worth of crypto being sent to mixers such as Tornado Cash. The breakdown of assets sent to mixers includes 1,200 Ether (ETH) and around 2,668 BNB (BNB). The January figures are 92.7% lower than the $121.4 …
Defi / Feb. 1, 2023