#thetanuts
thetanuts
134 views
7 Discussing
Hot
Latest
🟠 Thetanuts Finance Vault Exploited for $2.1M in Legacy Code Attack
A $2.1 million DeFi heist went down, but the target was a ghost. Attackers hit a deprecated Thetanuts Finance vault, a relic from years ago that the protocol had long since abandoned. This wasn't a breach of their active systems, but a reminder that old code never truly dies on the blockchain 🔥.
Security firms traced the damage to an integer division flaw in the contract's mint function. This bug allowed attackers to mint tokens for free, essentially printing digital cash out of thin air 💰. The exploiter managed to swap $105,000 in USDC for about 60 ETH, leaving behind a trail of digital dust.
Here's the kicker: whitehat defenders swooped in and recovered nearly $2 million in option tokens. So, while the exploit happened, the damage was largely mitigated by good actors. Still, this incident fits a disturbing pattern of attackers targeting old, unmaintained smart contracts, proving that even abandoned code can become a lucrative target 👀.
📊 Minimal immediate impact expected on major crypto markets. This exploit targets a specific, deprecated DeFi protocol and does not signal systemic risk to active DeFi infrastructure or major coin price action.
#thetanuts #defi #exploit #smartcontracts #whitehat
A $2.1 million DeFi heist went down, but the target was a ghost. Attackers hit a deprecated Thetanuts Finance vault, a relic from years ago that the protocol had long since abandoned. This wasn't a breach of their active systems, but a reminder that old code never truly dies on the blockchain 🔥.
Security firms traced the damage to an integer division flaw in the contract's mint function. This bug allowed attackers to mint tokens for free, essentially printing digital cash out of thin air 💰. The exploiter managed to swap $105,000 in USDC for about 60 ETH, leaving behind a trail of digital dust.
Here's the kicker: whitehat defenders swooped in and recovered nearly $2 million in option tokens. So, while the exploit happened, the damage was largely mitigated by good actors. Still, this incident fits a disturbing pattern of attackers targeting old, unmaintained smart contracts, proving that even abandoned code can become a lucrative target 👀.
📊 Minimal immediate impact expected on major crypto markets. This exploit targets a specific, deprecated DeFi protocol and does not signal systemic risk to active DeFi infrastructure or major coin price action.
#thetanuts #defi #exploit #smartcontracts #whitehat
🟠 Vault Thetanuts Finance Hacked for $2.1M Due to Outdated Code Attack
A $2.1M DeFi heist went down, but the target was a ghost from the past. Hackers hit the outdated vault of Thetanuts Finance, a relic from years ago that the protocol has long since abandoned. This wasn’t a breach of their active systems, but a reminder that old code never really dies on the blockchain 🔥.
Security firms traced the damage back to an integer division error in the mint function of the contract. This bug allowed the attackers to mint tokens for free, essentially printing digital cash out of thin air 💰. The exploiter managed to swap $105,000 in USDC for around 60 ETH, leaving behind a trail of digital dust.
Here’s the kicker: whitehat defenders swooped in and recovered nearly $2M in the form of option tokens. So, while the exploit happened, the damage was largely mitigated by good actors. Still, this incident fits into a worrying trend of attacks on old, unmaintained smart contracts, proving that even abandoned code can become a lucrative target 👀.
📊 Minimal immediate impact on the broader crypto markets is expected. This exploit targeted a specific, outdated DeFi protocol and doesn’t signal systemic risk for the active DeFi infrastructure or price movements of major coins.
When will they stop attacking old code? 👇
#thetanuts #defi #exploit #smartcontracts #whitehat
A $2.1M DeFi heist went down, but the target was a ghost from the past. Hackers hit the outdated vault of Thetanuts Finance, a relic from years ago that the protocol has long since abandoned. This wasn’t a breach of their active systems, but a reminder that old code never really dies on the blockchain 🔥.
Security firms traced the damage back to an integer division error in the mint function of the contract. This bug allowed the attackers to mint tokens for free, essentially printing digital cash out of thin air 💰. The exploiter managed to swap $105,000 in USDC for around 60 ETH, leaving behind a trail of digital dust.
Here’s the kicker: whitehat defenders swooped in and recovered nearly $2M in the form of option tokens. So, while the exploit happened, the damage was largely mitigated by good actors. Still, this incident fits into a worrying trend of attacks on old, unmaintained smart contracts, proving that even abandoned code can become a lucrative target 👀.
📊 Minimal immediate impact on the broader crypto markets is expected. This exploit targeted a specific, outdated DeFi protocol and doesn’t signal systemic risk for the active DeFi infrastructure or price movements of major coins.
When will they stop attacking old code? 👇
#thetanuts #defi #exploit #smartcontracts #whitehat
Security Alert: According to PeckShield's monitoring, Thetanuts Finance has been hit, with current losses around $2.1 million. Notably, about $2 million worth of options tokens have been returned by white hats, so the risk exposure has narrowed.
On-chain fund flows show that the attacker has swapped 105,000 USDC for roughly 60 ETH, still holding about $34,000 in USDC and some options tokens. Moving forward, keep an eye on the project's review, compensation plans, and whether related contracts are paused or upgraded.
DeFi users should reduce interactions with affected contracts and it's advisable to check and revoke any authorizations promptly. #DeFi安全 #链上安全 #Thetanuts
On-chain fund flows show that the attacker has swapped 105,000 USDC for roughly 60 ETH, still holding about $34,000 in USDC and some options tokens. Moving forward, keep an eye on the project's review, compensation plans, and whether related contracts are paused or upgraded.
DeFi users should reduce interactions with affected contracts and it's advisable to check and revoke any authorizations promptly. #DeFi安全 #链上安全 #Thetanuts
Thetanuts Finance was exploited on June 15 after an attacker targeted a legacy Ethereum vault and drained assets valued at about $2.1 million.
According to Blockaid, ExVul, and PeckShield, the attack exploited a low-supply accounting flaw in the vault's minting and redemption calculations. The attacker used flash-loaned capital to reduce token supply to an extremely low level, then reminted tokens at a discounted rate due to rounding behavior in the contract logic.
ExVul's analysis found that the vault's redemption formula became vulnerable when the total supply approached near-zero levels. This allowed the attacker to generate inflated redemption values and repeatedly execute mint-and-claim transactions that withdrew more assets than were deposited.
Initial estimates placed losses near $105,500 in USDC. A later analysis by PeckShield reported a total impact of $2.1 million.
PeckShield also stated that about $2 million worth of option tokens were secured by whitehat actors. The attacker converted about $105,000 in USDC into ETH and continued to hold additional assets linked to the exploit.
Thetanuts Finance said the affected vault was a deprecated product that had been migrated years ago and was not connected to any current contracts or active products. The team plans to release a full post-mortem after completing its investigation.
The incident serves as another reminder that legacy DeFi infrastructure can remain vulnerable even after protocols migrate users to newer systems.
#exploit #SecurityAlert #Thetanuts #CryptoNews #CryptocurrencyNews
According to Blockaid, ExVul, and PeckShield, the attack exploited a low-supply accounting flaw in the vault's minting and redemption calculations. The attacker used flash-loaned capital to reduce token supply to an extremely low level, then reminted tokens at a discounted rate due to rounding behavior in the contract logic.
ExVul's analysis found that the vault's redemption formula became vulnerable when the total supply approached near-zero levels. This allowed the attacker to generate inflated redemption values and repeatedly execute mint-and-claim transactions that withdrew more assets than were deposited.
Initial estimates placed losses near $105,500 in USDC. A later analysis by PeckShield reported a total impact of $2.1 million.
PeckShield also stated that about $2 million worth of option tokens were secured by whitehat actors. The attacker converted about $105,000 in USDC into ETH and continued to hold additional assets linked to the exploit.
Thetanuts Finance said the affected vault was a deprecated product that had been migrated years ago and was not connected to any current contracts or active products. The team plans to release a full post-mortem after completing its investigation.
The incident serves as another reminder that legacy DeFi infrastructure can remain vulnerable even after protocols migrate users to newer systems.
#exploit #SecurityAlert #Thetanuts #CryptoNews #CryptocurrencyNews
Thetanuts Finance allegedly hit by an attack, losses estimated at around $2.1 million
Blockchain security firm PeckShield Alert has reported that Thetanuts Finance has seemingly experienced a security breach, with initial estimates of losses around $2.1 million. The specific attack methods and affected assets are still under further analysis.
Why it matters: DeFi security incidents keep happening, and this project just rebooted after an April security event, only to get hit again, highlighting the ongoing challenges of security audits and vulnerability fixes in DeFi protocols.
#DeFi #安全 #黑客 #Thetanuts #Web3
Blockchain security firm PeckShield Alert has reported that Thetanuts Finance has seemingly experienced a security breach, with initial estimates of losses around $2.1 million. The specific attack methods and affected assets are still under further analysis.
Why it matters: DeFi security incidents keep happening, and this project just rebooted after an April security event, only to get hit again, highlighting the ongoing challenges of security audits and vulnerability fixes in DeFi protocols.
#DeFi #安全 #黑客 #Thetanuts #Web3
Log in to explore more content