Exploit Forces Crema Finance to Temporarily Suspend Services, $8.7 Million Stolen

According to the decentralized finance (défi) protocol Crema Finance, the application was hacked on July 2, 2022. A Twitter account called “Solanafm” says the defi protocol lost around $8.7 million from the attack.

Crema Finance Vulnerability Causes Defi App to Lose Millions — 6 Flashloans Executed

Another defi protocol has lost funds to a hacker as the Solana liquidity application disclosed it was attacked on Saturday, juillet 2, 2022.

“Attention,” Crema Finance a écrit on Saturday. “Our protocol seems to have just experienced a hacking. We temporarily suspended the program and are investigating it. Updates will be shared here ASAP.”

Crema Finance is a concentrated liquidity market maker (CLMM) algorithm built on top of Solana and the Twitter account @solanafm explained the defi app suffered an exploit. “On 2nd July, a vulnerability in the ticks account caused an exploit on Crema Finance for a total amount of $8,782,446,” Solanafm tweeté.

“We worked closely with the Crema team alongside [Ottersec] to break down the movement of the stolen funds following the exploit,” Solanafm added. Ottersec is a blockchain auditing firm that has audited various blockchain smart contracts and infrastructure.

Solanafm says that the hacker siphoned the funds via “6 flash loans on” the Solend Protocol. The attacker also leveraged the Wormhole Exchange to gather the stolen funds.

“Currently, all of the stolen funds are held in the hacker’s ETH wallet and [the] initial SOL wallet,” Solanafm’s Twitter thread concluded.

Ottersec also published a thread on the Crema Finance exploit and the flash loans. “In order to utilize flashloans, the attacker had to deploy their own onchain program,” Ottersec said. “Unfortunately, this program was quickly closed after the exploit.”

“The flashloan calls three key instructions on the Crema contract: ‘DepositFixTokenType,’ ‘Claim,’ and ‘WithdrawAllTokenTypes.’ The attacker is [then] able to deposit and then withdraw the same amount of tokens, while receiving additional tokens from the claim instruction,” Ottersec added.

Mots clés dans cette histoire
$8.7 million, attacker, Crema Finance, Crypto, actifs cryptographiques, Crypto-monnaie, DeFi, Defi Hack, Exploit, Ottersec, Mercredi, Mercredi, Mercredi (Mercredi), Solana liquidity protocol, Solana Network, Solanafm, Solend

What do you think about Crema Finance getting hacked for $8.7 million in crypto funds? Dites-nous ce que vous pensez de ce sujet dans la section commentaires ci-dessous.

Jamie Redman

Jamie Redman est le responsable de l'actualité chez krakow3d.com News et un journaliste spécialisé dans les technologies financières vivant en Floride. Redman est un membre actif de la communauté des crypto-monnaies depuis 2011. Il a une passion pour Bitcoin, code open-source, et applications décentralisées. Depuis septembre 2015, Redman a écrit plus de 5,700 articles pour krakow3d.com Nouvelles sur les protocoles perturbateurs qui émergent aujourd'hui.




Crédits image: Shutterstock, Pixabay, Wiki Commons

Clause de non-responsabilité: Cet article est à titre informatif uniquement. Il ne s'agit pas d'une offre directe ou d'une sollicitation d'une offre d'achat ou de vente, ou une recommandation ou une approbation de tout produit, prestations de service, ou entreprises. krakow3d.com ne fournit pas d'investissement, impôt, juridique, ou conseil comptable. Ni la société ni l'auteur ne sont responsables, directement ou indirectement, pour tout dommage ou perte causé ou prétendument causé par ou en relation avec l'utilisation ou la confiance en tout contenu, biens ou services mentionnés dans cet article.

Lis clause de non-responsabilité