The Bedrock crypto liquid restaking protocol recently fell victim to a vulnerability, resulting in the loss of $2 million.
Vulnerability in uniBTC Vaults
On September 26, Web3 security firm Dedaub identified a vulnerability in Bedrock’s uniBTC vaults. Despite timely notification, the protocol failed to act before the vulnerability was exploited. A representative from Dedaub stated, “Unfortunately, even though we found the issue in the smart contract several hours before, by the time the team responded, the vulnerability had been exploited.”
Platform's Response
On September 27, Bedrock acknowledged the breach and reassured users that existing funds were safe. The attacker managed to steal $2 million, although they could have taken up to $75 million.
Reimbursement Plans
The Bedrock protocol is working on a reimbursement plan for affected investors and is collaborating with audit teams to recover the lost funds. In a unique move, Bedrock reached out to the hacker through an onchain message, offering them a reward and a position as a white hat hacker to help secure the protocol. However, the hacker has yet to respond.
The incident with the Bedrock protocol highlights the importance of ensuring security in cryptocurrency protocols and the need for timely responses to identified vulnerabilities.
