Open in app

Sign In

Write

Sign In

Shashank
Shashank

361 Followers

Home

About

Published in SolidityScan

·2 days ago

DKP Hack Analysis — Improper Token-Pair Ratio Calculation

Overview: A flash loan attack on the DKP protocol on February 8th, 2023, caused users of the protocol to lose $80K since the execute() function depended on the balance ratio of the two tokens in the USDT-DKP pair. Smart Contract Hack Overview: Attacker’s Transaction:0x0c850f,0x2d31 Attacker’s Address: 0xF38 Exploit Contract: 0xf34ad DKP…

Smart Contract Security

3 min read

DKP Hack Analysis — Improper Token-Pair Ratio Calculation
DKP Hack Analysis — Improper Token-Pair Ratio Calculation
Smart Contract Security

3 min read


Published in SolidityScan

·4 days ago

Poolz Finance Hack Analysis — Still experiencing overflow?

Overview: On March 15th, 2023, a hack on Poolz finance contracts allowed attackers to exploit a vulnerability in the unaudited LockedControl smart contract of Poolz Finance, which resulted in a typical integer overflow problem and a loss of $6,65,000 dollars. Smart Contract Hack Overview: LockedContract Code: 24dd7e51ef Vesting Contract: 0x8bfaa4 Attackers…

Smart Contract Security

3 min read

Poolz Finance Hack Analysis — Still experiencing overflow?
Poolz Finance Hack Analysis — Still experiencing overflow?
Smart Contract Security

3 min read


Published in SolidityScan

·5 days ago

Anji Eco Hack Analysis — Improper Upgrades

Overview: On March 17, 2023, Anji Eco’s contracts were hacked due to flaws in the upgrade contract system, causing Anji Network users to lose 120 WBNB. Smart Contract Hack Overview: AnjiEco’s Contract Code: 0xfc619ff Attacker’s address (previous UF DAO hacker): 0xc578d755 Attacker’s Transaction: 0xe3d1f20 Flashloan Receiver’s Address: 0x1609443 Vulnerable SPND-ANJI contract…

Smart Contract Security

3 min read

Anji Eco Hack Analysis — Improper Upgrades
Anji Eco Hack Analysis — Improper Upgrades
Smart Contract Security

3 min read


Published in SolidityScan

·Mar 17

Tender Finance Hack Analysis — Improper Oracle Price calculation

Overview: On March 8, 2023, Tender Finance users of the DeFi borrowing platform, experienced a hack where they were subjected to an incorrect Oracle price computation for tGMX tokens. This mistake cost the customers around $1.6 million in loss. Smart Contract Hack Overview: Attacker’s Address: 0x896DF3 Attacker’s Transaction: 0xf14df8a42 tETH contract…

Smart Contract Security

3 min read

Tender Finance Hack Analysis — Improper Oracle Price calculation
Tender Finance Hack Analysis — Improper Oracle Price calculation
Smart Contract Security

3 min read


Published in SolidityScan

·Mar 14

Euler Finance Hack Analysis — Flash loan attack

Overview: On March 13, 2023, A hack occurred in which Flash loans were used to exploit a logical flaw in Euler Finance’s recently launched donate liquidity feature. The hacker changed the conversion rate logic for borrowing and selling DAI tokens, causing the project to lose $197 million. Smart Contract Hack Overview: Exploit Contract: 0xebc291,0x036ce,0xD3b7CE,0x0b812c Attacker’s…

Smartcontract Audit

4 min read

Euler Finance Hack Analysis — Flash loan attack
Euler Finance Hack Analysis — Flash loan attack
Smartcontract Audit

4 min read


Published in SolidityScan

·Mar 13

PeopleDAO Community Hack — Invisible hacker

Overview: The Google sheet used to award monthly users based on their contributions to the community was compromised, causing a loss of $120,000. On March 6, 2023, the PeopleDAO community stated that they had been abused and their treasure stored on Safe Platform had been taken. Smart Contract Hack Overview: Attacker’s…

Smart Contract Security

3 min read

PeopleDAO Community Hack — Invisible hacker
PeopleDAO Community Hack — Invisible hacker
Smart Contract Security

3 min read


Published in SolidityScan

·Mar 10

Jump & Oasis Crypto Counter-Exploit Hack Analysis

Overview: Due to a misconfiguration in the roles and privileges of the Oasis automation bot, which allowed the attacker to get access to the vault by adding an automation trigger to the Oasis vault, a $227 million counter-exploit for wormhole exploit occurred on February 21, 2023. Smart Contract Hack Overview: Oasis…

Smart Contract Security

4 min read

Jump & Oasis Crypto Counter-Exploit Hack Analysis
Jump & Oasis Crypto Counter-Exploit Hack Analysis
Smart Contract Security

4 min read


Published in SolidityScan

·Mar 7

SwapX hack analysis — Improper Access Control

Overview: Due to poor access control on the “approval” function, which let attackers approve their contract and force trades on the victim’s behalf, a BSC chain attack on February 27, 2023, caused a loss to swapX of almost $1M. Smart Contract Hack Overview: Attacker’s initial Transaction: 0xf3a5d37 Attacker’s Transaction: 0x3ee23c158 Attacker’s Address: 0x7d192fa3a Attacker’s Contract…

Smartcontract Audit

3 min read

SwapX hack analysis — Improper Access Control
SwapX hack analysis — Improper Access Control
Smartcontract Audit

3 min read


Published in SolidityScan

·Mar 2

Dexible Hack Analysis — Never Blindly Trust Smart Contracts

Overview On February 17, 2023, a hack occurred on the Dex Aggregator platform called Dexible, resulting in a loss of 2 million dollars to users who allowed Dexible’s contract to exchange tokens on their behalf. The affected addresses primarily belong to 17 traders. …

Smartcontract Audit

3 min read

Dexible Hack Analysis — Never Blindly Trust Smart Contracts
Dexible Hack Analysis — Never Blindly Trust Smart Contracts
Smartcontract Audit

3 min read


Published in SolidityScan

·Feb 27

Dynamic Finance Hack Analysis — Incorrect Deposit Logic

Overview: On February 22, 2023, 74 BNB of $DYNA tokens were lost as a result of a hack on the Dynamic Finance project at the BSC network. The deposit function logic contained flawed computations for claiming rewards upon deposits, which allowed the hackers to trick it. Smart Contract Hack Overview: Attacker’s…

Smartcontract Audit

3 min read

Dynamic Finance Hack Analysis — Incorrect Deposit Logic
Dynamic Finance Hack Analysis — Incorrect Deposit Logic
Smartcontract Audit

3 min read

Shashank

Shashank

361 Followers

CEO of CredShields.com building SolidityScan.com | For smart contract audits reach out at info@credshields.com

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech