BTC

$63909.684

2.52%

ETH

$3054.06

1.75%

BNB

$557.022

2.41%

XRP

$0.512

4.67%

Knowledge

OKLink Shares The Full Progress Of Nomad Bridge’s $190 Million Attack

August 3, 2022 - Around 2 mins mins to read

Nomad Bridge’s entire $190.7 million was withdrawn in a security attack. OKLink’s investigation sheds light on the full evolution of this exploit.

nomad Bridge

As was updated in a previous Coincu News article, Nomad Bridge experienced a security attack on August 2nd, total estimated damage to date is over $190 million.

The entire Nomad Bridge attack process

Tracking by OKLink chain security guards shows that the Nomad Bridge attack incident involved a total of 1,251 ETH addresses, involved 14 currencies, and the amount involved was about $190 million including: 12 ENS addresses, ENS addresses related to a total of more than 69.8 million US dollars, accounting for a total of about 100 million US dollars, 38% of the total amount, after exploiting the loophole to make a profit, the number of addresses only directly transacted up to 739 addresses, accounting for nearly 60%.

The cause is identified as the Replica contract assigns assert [0x00] to 1 during initialization, so that uninitialized key-value pairs in the store variable message can pass the process successful detection.

Nomad Bridge
Source: Anomalies detected when a transaction is made with the acceptRoot function

According to OKLink, starting from block 15259101, the attacker makes multiple calls to the Process function of the Replica contract. The contract leads to a security hole that could be bypassed by any notification.

Nomad bridge
Source: OKLink

Guardian on-chain analysts suggest that rigorous security testing and evaluation is also carried out in the initialization function.

In short, this incident did not arise because of the nature of the “cross-chain” but it was an issue arising from the security flaw of the contract – which can happen with any array of DeFi products. However, again and again, the danger of these products is that once attacked, it can quickly spread to neighboring chains, as well as related products.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Foxy

CoinCu News

Knowledge

OKLink Shares The Full Progress Of Nomad Bridge’s $190 Million Attack

Nomad Bridge’s entire $190.7 million was withdrawn in a security attack. OKLink’s investigation sheds light on the full evolution of this exploit.

nomad Bridge

As was updated in a previous Coincu News article, Nomad Bridge experienced a security attack on August 2nd, total estimated damage to date is over $190 million.

The entire Nomad Bridge attack process

Tracking by OKLink chain security guards shows that the Nomad Bridge attack incident involved a total of 1,251 ETH addresses, involved 14 currencies, and the amount involved was about $190 million including: 12 ENS addresses, ENS addresses related to a total of more than 69.8 million US dollars, accounting for a total of about 100 million US dollars, 38% of the total amount, after exploiting the loophole to make a profit, the number of addresses only directly transacted up to 739 addresses, accounting for nearly 60%.

The cause is identified as the Replica contract assigns assert [0x00] to 1 during initialization, so that uninitialized key-value pairs in the store variable message can pass the process successful detection.

Nomad Bridge
Source: Anomalies detected when a transaction is made with the acceptRoot function

According to OKLink, starting from block 15259101, the attacker makes multiple calls to the Process function of the Replica contract. The contract leads to a security hole that could be bypassed by any notification.

Nomad bridge
Source: OKLink

Guardian on-chain analysts suggest that rigorous security testing and evaluation is also carried out in the initialization function.

In short, this incident did not arise because of the nature of the “cross-chain” but it was an issue arising from the security flaw of the contract – which can happen with any array of DeFi products. However, again and again, the danger of these products is that once attacked, it can quickly spread to neighboring chains, as well as related products.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Foxy

CoinCu News

Visited 14 times, 1 visit(s) today