Key Takeaways
- $300,000 of crypto stolen from OlympusDAO right this moment has been returned by the hacker liable for the theft.
- The unique assault noticed the hacker exploit a wise contract associated to the undertaking’s bond options.
- OlympusDAO is one in every of a number of DeFi platforms focused in assaults totaling $718 million this month.
Share this text
The hacker behind this morning’s $300,000 assault on OlympusDAO has returned the stolen funds.
Hacker Returns Funds to OlympusDAO
OlympusDAO has recovered all of its stolen funds.
In response to statements from an OlympusDAO spokesperson, the attacker liable for the theft returned all of the funds to the undertaking after negotiating a deal.
The stolen funds had been returned to the undertaking in two transactions on the Ethereum blockchain at 2:29 p.m. UTC and 2:30 p.m. UTC. These transactions occurred simply hours after the funds had been stolen at 5:22 a.m. UTC. The unique theft noticed the attacker drain 30,437 OHM valued at practically $300,000 from OlympusDAO’s sensible contracts.
The attacker focused a particular bond contract known as BondFixedExpiryTeller. In response to PeckShield, one of many contract’s capabilities didn’t correctly validate inputs, permitting the attacker to enter false values and switch funds.
Peckshield careworn that the affected contract was not a local OlympusDAO contract. Slightly, it was a Bond Protocol sensible contract used to pilot launch OHM bonds.
OlympusDAO confirmed the exploit on its Discord channel right this moment. There, it said that the attacker “was capable of withdraw roughly 30K OHM ($300K)” however that many of the undertaking’s different funds remained protected.
OlympusDAO is a decentralized reserve foreign money protocol backed by $260 million value of belongings held by 120,000 holders. It permits customers to have interaction with the protocol via staking and bonding—the latter of which includes buying and selling tokens for OHM at a reduction.
The undertaking opened its second spherical of bond testing on October 13. At the moment, it warned that the present section of the function constituted a “testing interval and never the total OHM Bonds launch”—although its uncertainty appeared to concern market discovery moderately than safety points.
OlympusDAO’s OHM token is at present valued at $9.94 and appears to have been minimally affected by right this moment’s assault.
A number of different DeFi platforms have been focused in assaults this October, together with Mango Markets, TempleDAO, BNB Chain, and Moola Market. At the least $718 million has been stolen this month, in accordance with Chainalysis information.
Disclosure: On the time of writing, the writer of this piece owned BTC, ETH, and different cryptocurrencies.
