• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Hackers Drain Over $230,000 from Bankroll Status via Smart Contract Vulnerability

user avatar

by Giorgi Kostiuk

2 years ago

  1. Attack on Bankroll Status
  2. DeFi Hacks Trends in 2024
  3. Conclusion


    4. According to Cyvers Alerts, the DualPools hacker group siphoned over $230,000 from the Bankroll Status platform through a vulnerability in a previously signed contract deployed about three months ago.

    Attack on Bankroll Status

    Bankroll Status, a platform on the BNB blockchain, lost over $230,000 in a cyber attack. Cyvers Alerts was the first to report on the fraudulent transaction, citing that the funds were stolen through a smart contract signed and deployed about 90 days ago. According to Cyvers, the attack was orchestrated by the DualPools hacker group known for its distinct attack methodologies. The group typically employs malicious smart contracts in DeFi platforms to systematically drain funds from unaware users.

    "Our system has detected a suspicious transaction involving Bankroll Status on BNB with a loss of $230k. It seems that the Dualpools hacker is behind the suspicious transaction! Our system detected malicious contract deployment targeting Bankroll 90 days ago!"Cyvers

    DeFi Hacks Trends in 2024

    Most of the DeFi attacks in 2024 have resulted from smart contract vulnerabilities, leading to numerous incidents on several DeFi platforms. For instance, DeFi protocol Nexera lost about $1.5 million on August 7 due to a smart contract vulnerability. Mar Guimenez-Aguilar, a cybersecurity expert and the lead security architect at Halborn, confirmed that close to 60% of crypto losses in the top 100 DeFi hacks resulted from off-chain attacks. He stated that about 52% of attacks targeted private keys, with roughly 56% of crypto’s total value lost.

    Mar Guimenez-Aguilar thinks the lack of investor awareness leaves a larger opportunity for crypto hackers, highlighting that the attention is often heavily directed toward securing the smart contracts’ code, which has been the primary attack vector while neglecting the fact that the protocol functions within a broader context.None

    Conclusion

    DeFi protocol attacks continue to pose a significant threat to users, many of whom lose substantial amounts due to smart contract vulnerabilities. This underscores the need for stronger security measures and increased awareness among investors and developers.

    The incident with the attack on Bankroll Status highlights that a lack of focus on smart contract security can lead to significant financial losses. It is crucial for DeFi platform developers and users to understand the risks and take steps to mitigate them.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Zcash Surges to New High as Institutional Interest Grows

chest

Zcash (ZEC) has surged to a new year-to-date high of 590, driven by significant institutional investment from Multicoin Capital.

user avatarTenzin Dorje

Sabadell Joins European Banking Consortium for Stablecoin Initiative

chest

Spanish bank Sabadell has joined the Qivalis consortium aimed at launching a Europe-pegged stablecoin.

user avatarBayarjavkhlan Ganbaatar

Ripple CEO Highlights Critical Hearing for CLARITY Act's Future

chest

Ripple CEO Brad Garlinghouse emphasizes the importance of the upcoming Senate Banking Committee hearing for the CLARITY Act's progress.

user avatarMohamed Farouk

Bitcoin Holds Steady Above 80,000 as Market Recovery is Tested

chest

Bitcoin's price remains above 80,000, indicating a recovery from March lows, with differing behaviors observed among large holders.

user avatarElias Mukuru

Gerstein Harrow LLP Files Restraining Notice Over Ethereum Linked to Kelp DAO Hack

chest

Gerstein Harrow LLP has filed a restraining notice in a New York district court, claiming legal rights to approximately 30,766 Ethereum frozen after the Kelp DAO hack.

user avatarDiego Alvarez

Aave Takes Legal Action to Release Frozen Ethereum in Kelp DAO Hack Case

chest

Aave has filed an emergency motion in a New York district court to vacate a restraining notice blocking the Arbitrum DAO from accessing approximately 30,766 Ethereum frozen after the Kelp DAO hack.

user avatarKenji Takahashi

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.