• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Decentralized Finance Protocol Penpie Loses $27 Million in Hack

user avatar

by Giorgi Kostiuk

2 years ago

  1. The Exploit and Its Consequences
  2. Response from Penpie and Pendle
  3. Penpie's Appeal to the Hacker


    4. On September 3, the decentralized finance (DeFi) protocol Penpie, built on Pendle, was hacked, resulting in the loss of $27 million in various cryptocurrencies.

    The Exploit and Its Consequences

    The stolen funds included Ether (ETH) and stablecoins like wrapped USDC and sUSDE, according to EmberCN. The hacker reportedly exploited a vulnerability in Penpie's security, converting most of the stolen assets into ETH and then transferring them to a new Ethereum address, making it difficult to trace. The hack was first brought to light by an X account, Chaofan Shou, affiliated with Fuzzland. The account reported that $17 million had been drained from Penpie, indicating that the protocol was unaware of the breach even after it had begun. This delay in response led to an additional $10 million in losses.

    Response from Penpie and Pendle

    Penpie confirmed the security breach in an X post approximately an hour after the hack began. The protocol immediately paused all deposits and withdrawals to prevent further losses. Pendle, the platform on which Penpie is built, also took action. They paused all contracts on Pendle as a precautionary measure, safeguarding approximately $105 million that could have been at risk. Pendle confirmed that their funds were secure and that the breach was specific to Penpie, not affecting the Pendle protocol itself.

    Alert: Penpie has encountered a security compromise. We have paused all deposits and withdrawals. Our team is working tirelessly to address it. Your patience and support are invaluable during this time. Stay tuned for further updates.Penpie

    Penpie's Appeal to the Hacker

    Penpie reached out to the hacker with an offer to negotiate a bounty for the safe return of the stolen funds. Penpie emphasized that they would not pursue legal action if the funds were returned. They also offered the hacker an opportunity to transition into a white-hat role, where their skills would be recognized and rewarded. The protocol stressed the importance of the stolen funds to their community and expressed a willingness to resolve the issue cooperatively.

    As of the latest updates, Penpie’s stolen funds have been partially transferred to Tornado Cash, making recovery efforts more challenging. Penpie is actively working to ensure that users can securely withdraw their remaining funds.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Concerns Over Bitcoin's Quantum Security

chest

Concerns have been raised about making Bitcoin's network quantum-secure.

user avatarMohamed Farouk

Crypto Analyst Shares Insights on Bitcoin Market

chest

A crypto analyst known as TheModernInvestor shares insights on Bitcoin's market trends and investor sentiment, highlighting optimism despite recent price declines.

user avatarBayarjavkhlan Ganbaatar

Nakamoto NAKA Reports $239 Million Losses in Q1

chest

Nakamoto NAKA reported significant losses of approximately $239 million in Q1 due to the decline in Bitcoin prices.

user avatarDiego Alvarez

Nakamoto NAKA Implements 1-for-40 Reverse Stock Split

chest

Nakamoto NAKA announces a 1-for-40 reverse stock split to comply with Nasdaq listing rules after shareholder approval.

user avatarElias Mukuru

Microsoft and OpenAI Report Malware Infections from ShaiHulud Campaign

chest

Microsoft and OpenAI reported malware infections in their systems linked to the ShaiHulud campaign.

user avatarKenji Takahashi

ShaiHulud Malware Campaign Raises Alarms in Software Development

chest

A new malware campaign named ShaiHulud is raising alarms in the software development community due to its extensive reach across major package repositories.

user avatarMaria Fernandez

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.