Infini Exploit: $49M USDC Lost through Smart Contract Vulnerability

by Giorgi Kostiuk

a year ago

Infini, a DeFi platform, lost $49 million in USDC due to a smart contract vulnerability caused by retained developer access. The incident highlights security issues in cryptocurrencies.

Details and Causes of the Exploit

The $49 million exploit occurred due to an administrator's access to Infini's smart contract, allowing the attacker to drain the platform's funds. Infini disclosed that the exploit was linked to retained developer access but has not yet released details on the flaw. Infini, which offered high-yield neobank services, unexpectedly fell victim to its own yield products.

ALERT: Infini faced a $49M USDC exploit due to the retained administrative privileges of an attacker.

Actions After the Attack

Following the exploit, the attacker converted the stolen USDC into 17,696 ETH, complicating the freezing of funds. These operations were conducted through decentralized protocols like Uniswap and Sky Protocol. The funds were split into smaller sums across various addresses, complicating traceability. To cover these transactions, the attacker used Tornado Cash, hindering tracking efforts.

Analysis and Impact

The exploit raised doubts about Infini's reliability and possible personal key leaks. Although Infini has not halted operations, the project's founder, @christianeth, took full responsibility for the flaw, stating readiness to compensate users. The incident raises concerns about potential attacks from the Lazarus group, known for stealing cryptocurrency funds. Some also suspect insider involvement familiar with the contract.

"My personal key has not leaked, so there is no need to worry. I was negligent in the authority transfer process - it is my responsibility."@christianeth

The Infini incident underscores the importance of thorough security and access verification in DeFi projects. This case may influence the crypto market, highlighting community concerns about security issues.

Rewards

More rewards

Discover enhanced rewards on our social media.

Other news

XRP's Design Offers Greater Protection Against Quantum Threats Compared to Bitcoin

Experts suggest that XRP's design minimizes exposure to potential quantum attacks compared to Bitcoin.

Elias Mukuru7 minutes ago

Senators Question Trump's Attendance at Controversial Memecoin Luncheon

Three Democratic senators have questioned the potential attendance of President Trump at a memecoin luncheon, raising ethical concerns about misleading promotions.

Diego Alvarez10 minutes ago

Concerns Grow Over Bitcoin's Future Amid High Volatility

Concerns grow over Bitcoin's future due to high volatility, which is four times that of the S&P 500. The launch of Bitcoin ETFs may lead to a market reversal, prompting investors to reconsider their positions.

Kenji Takahashian hour ago

Polymarkets Surpasses $4 Billion in Total Volume with Chainlink Integration

Polymarkets' five-minute and fifteen-minute crypto markets have surpassed $4 billion in total trading volume, with over $200 million generated in the first week of trading.