Beanstalk Farms is the most recent project to suffer a security breach, losing all of its $182 million in collateral.

A combination of two nefarious governance ideas and a flash loan attack attacked the credit-based stablecoin technology.

A flash loan must be completed and repaid in a single block, and it frequently requires the execution of multiple smart contracts at the same time. In the past, flash loans have been used to carry out hacks or security attacks on other protocols. Beanstalk Farms is based on Ethereum.

The attacker may have made off with 24,830 Ethereum (ETH) and 36 million Bean (BEAN) in the hack, according to blockchain security firm PeckShield.

Beanstalk Farms confirm attack

Confirming the attack, Beanstalk Farms wrote that they are “engaging all efforts to try to move forward.”

“As a decentralized project, we are asking the DeFi [decentralized finance] community and experts in chain analytics to help us limit the exploiter’s ability to withdraw funds via CEXes. If the exploiter is open to a discussion, we are as well,” said a spokesman for Beanstalk Farms.

Bailout unlikely

Since the attack, BEAN is down by 78.3% and is trading at $0.21. Publius, a core member of the team on Discord, said that the incident could lead to the demise of the asset. “This project has not had any venture backing, so it is highly unlikely there is any sort of bailout coming.”

PeckShield chronicled the nature of the attack, pointing out that it began with the passing of BIP-18 and BIP-19 which sought to donate funds to war-torn Ukraine. 

Both Peckshield and the protocol’s auditor BlockSec agree that the proposals contained malicious code designed to “drain the pool’s fund.”

According to Block Sec, the attacker waited for a day after the passing of the emergency period to invoke the emergencyCommit. 

To bypass the two-third voting majority, the hacker deposited tokens into the Diamond contract that allowed him to borrow flash loans and deposit into the contract to get voting power. 

One-of-a-kind attack

With almost 79% of the voting power, the attacker drained the funds in what has been described as a one-of-a-kind attack. On-chain data indicates that the attacker sent 250,000 USD Coin (USDC) to an address affiliated with Ukraine’s donation efforts. 

“The same governance procedure that put Beanstalk in a position to succeed was ultimately its undoing,” said Publius.

The project’s team has since said they are not to be blamed for the attack. Their stance whipped up controversy in the community with members demanding they take responsibility for the incident.

“When you ask us to take responsibility, it’s really inappropriate,” said Publius. He argued that Beanstalk Farms was an open-source code project and was not run as a business so the team should be absolved of any wrongdoing.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Annie

CoinCu News

# Cryptocurrencies

$182 Million Loss

attack

Bailout unlikely

Beanstalk

Beanstalk Farms

crypto

hack

Hacker

Author

Annie

Championing positive change through finance, I've dedicated over eight years to sustainability and environmental journalism. My passion lies in uncovering companies that make a real difference in the world and guiding investors towards them. My expertise lies in navigating the world of sustainable investing, analyzing ESG (Environmental, Social, and Governance) criteria, and exploring the exciting field of impact investing. "Invest in a better future," I often say. That's the driving force behind my work at Coincu – to empower readers with knowledge and insights to make investment decisions that create a positive impact.

Related Posts

• UAE Crypto Adoption Leads Middle East With 72% Rate
• Crypto Security Incidents Spike In Early 2024
• Best New Altcoin Priced at $0.032 Positioned For Massive Spike to $100, Contending with Solana (SOL) Top 5 Position
• Wiki Finance Expo Hong Kong 2024 Unites Fintech Innovators and Industry Titans
• Crypto Scam Group Steals Tens Of Millions Of Dollars Across Many DeFi Platforms
• Hong Kong Crypto ETFs Of HashKey And Bosera Completed Subscription To Launch On April 30
• South Korean Won Now Overpowers Crypto Trading Demand
• US CPI In March Soars To 3.5%, Fed Rate Cut Prospects Decline

Scam Alert

Beanstalk Farms Suffers Exploit Leading to $182 Million Loss

Beanstalk Farms is the most recent project to suffer a security breach, losing all of its $182 million in collateral.

A combination of two nefarious governance ideas and a flash loan attack attacked the credit-based stablecoin technology.

A flash loan must be completed and repaid in a single block, and it frequently requires the execution of multiple smart contracts at the same time. In the past, flash loans have been used to carry out hacks or security attacks on other protocols. Beanstalk Farms is based on Ethereum.

The attacker may have made off with 24,830 Ethereum (ETH) and 36 million Bean (BEAN) in the hack, according to blockchain security firm PeckShield.

1/ The @BeanstalkFarms was exploited in a flurry of txs (https://t.co/PMsdP5dnJG and https://t.co/wyHe3ARZgU),
leading to the gain of $80+M for the hacker (The protocol loss may be larger), including 24,830 ETH and 36M BEAN.

— PeckShield Inc. (@peckshield) April 17, 2022

Beanstalk Farms confirm attack

Confirming the attack, Beanstalk Farms wrote that they are “engaging all efforts to try to move forward.”

“As a decentralized project, we are asking the DeFi [decentralized finance] community and experts in chain analytics to help us limit the exploiter’s ability to withdraw funds via CEXes. If the exploiter is open to a discussion, we are as well,” said a spokesman for Beanstalk Farms.

1/ The @BeanstalkFarms was exploited in a flurry of txs (https://t.co/PMsdP5dnJG and https://t.co/wyHe3ARZgU),
leading to the gain of $80+M for the hacker (The protocol loss may be larger), including 24,830 ETH and 36M BEAN.

— PeckShield Inc. (@peckshield) April 17, 2022

Bailout unlikely

Since the attack, BEAN is down by 78.3% and is trading at $0.21. Publius, a core member of the team on Discord, said that the incident could lead to the demise of the asset. “This project has not had any venture backing, so it is highly unlikely there is any sort of bailout coming.”

PeckShield chronicled the nature of the attack, pointing out that it began with the passing of BIP-18 and BIP-19 which sought to donate funds to war-torn Ukraine. 

Both Peckshield and the protocol’s auditor BlockSec agree that the proposals contained malicious code designed to “drain the pool’s fund.”

According to Block Sec, the attacker waited for a day after the passing of the emergency period to invoke the emergencyCommit. 

1/ The analysis of the @BeanstalkFarms attack.

The attacker made a proposal(18) in this transaction(https://t.co/30sIhf89xq), with _init(0xe5ecf73603d98a0128f05ed30506ac7a663dbb69), the malicious contract that will be executed when the proposal passes.@defiprime @WuBlockchain pic.twitter.com/cD42T1iJRe

— BlockSec (@BlockSecTeam) April 17, 2022

To bypass the two-third voting majority, the hacker deposited tokens into the Diamond contract that allowed him to borrow flash loans and deposit into the contract to get voting power. 

One-of-a-kind attack

With almost 79% of the voting power, the attacker drained the funds in what has been described as a one-of-a-kind attack. On-chain data indicates that the attacker sent 250,000 USD Coin (USDC) to an address affiliated with Ukraine’s donation efforts. 

4/ The initial funds to launch the hack are withdrawn from @SynapseProtocol and most of the result gains are deposited to @TornadoCash. Currently 15,154 ETH still stays in the hacker’s account. Note the hacker donates 250k USDC to Ukraine Crypto Donation. pic.twitter.com/jBjUJ0JbGj

— PeckShield Inc. (@peckshield) April 17, 2022

“The same governance procedure that put Beanstalk in a position to succeed was ultimately its undoing,” said Publius.

The project’s team has since said they are not to be blamed for the attack. Their stance whipped up controversy in the community with members demanding they take responsibility for the incident.

“When you ask us to take responsibility, it’s really inappropriate,” said Publius. He argued that Beanstalk Farms was an open-source code project and was not run as a business so the team should be absolved of any wrongdoing.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Annie

CoinCu News

Visited 35 times, 1 visit(s) today

Other Posts

Related Posts

Knowledge

- 104 days ago 12 mins

Fiat To Fiat Converter: Detailed Guide For Beginners And Important Notes

Knowledge

- 50 days ago 13 mins

Free Bitcoin Code 2024: Easy Way To Own Bitcoin

Knowledge

- 104 days ago 12 mins

Crypto To Crypto Converter: Detailed Guide For Beginners And Important Notes

Knowledge

- 5 days ago 12 mins

Bitcoin Mining: How Long Does It Take to Mine 1 Bitcoin?

News

- 15 hours ago 2 mins

BlackRock Bitcoin ETF Had No Inflows For 2 Consecutive Days

News

- 1 days ago 2 mins

The Bitcoin Epic Satoshi Of The 4th Halving Was Auctioned For Over $2.1 Million

Knowledge

- 39 days ago 10 mins

Buy Dogecoin on eToro: Step-by-Step Guide for Beginners (2024)

News

- 14 hours ago 2 mins

FBI Crypto Warning Issued Against Unregistered Services