BadgerDAO Frontend Hack
|続きを読む||rekt.news, theblock.co, halborn.com|
BadgerDAO was the target of a significant security breach in December of 2021. This incident was one of the largest DeFi exploits to date, with over $120M in user funds stolen. The attackers were able to compromise BadgerDAO's official website, allowing them to insert additional approval transactions into the website that set the attacker's wallet as the authorized spender.
BadgerDAO is a popular DeFi project that focuses on bringing Bitcoin into Ethereum's thriving DeFi ecosystem. Most of the stolen funds were vault tokens that were quickly cashed out and bridged back to the BTC chain. It is speculated that the attackers gained access to the project's Cloudflare account, but this was never confirmed by the BadgerDAO team. By the time the team noticed the exploit, the website had already been compromised for almost 2 weeks.
ユーザーは、承認をリボークしない限りリスクにさらされるため、以下の Revoke.cash エクスプロイトチェッカーを使用して安全を確保することをお勧めします。