闪电贷攻击攻击屡试不爽,DeFi一周被盗超1600万美元
```json { "translatedTitle": "Flash Loan Attacks Continue to Succeed, DeFi Loses Over $16 Million in One Week", "translatedContent": "[This article was updated on November 19, 2020 from tuoniaox.com]\n\nHackers exploited flash loans to obtain $16.4 million worth of ETH and DAI from DeFi projects Akropolis, Value DeFi Protocol, and Origin Protocol.\n\nThe Value DeFi attacker used ETH obtained through flash loans to exchange for DAI and USDT, depositing part of the DAI into Value DeFi's multi-stablecoin vault. They then conducted a series of stablecoin swaps between USDT, USDC, and DAI, aiming to exploit the pricing of Value DeFi vault withdrawal methods, causing $7.4 million in losses before the hacker returned $2 million.\n\nValue DeFi has suspended vault operations as the team needs to obtain account balances of each user who deposited funds before the attack occurred to calculate accurate compensation amounts.\n\nAs for Origin Protocol, which lost $7 million, similar methods continue to exploit flash loans on liquidity platforms like Uniswap. Meanwhile, funds deposited in the vault have also been frozen, as the company warned against purchasing any OUSD since current prices cannot reflect their underlying assets. If Origin cannot recover user-deposited funds, the team is expected to propose a plan to compensate users.\n\nAkropolis lost $2 million due to exploitation of pool tokens without asset backing. Akropolis has added checks for deposited tokens and reentrancy protection for deposits and withdrawals. Next week, the team plans to conduct additional contract testing and gradually reopen AKRO & ADEL staking pools.\n\nThrough flash loans, users can borrow directly from DeFi protocols without providing collateral, provided the loan is repaid within the same block. This enables speculators to exploit protocol vulnerabilities without requiring substantial initial capital. As DeFi attracted numerous new users in 2020 due to absurdly high APYs (exceeding traditional bank savings), such attacks have been on the rise.\n\nWithin the DeFi community, some consider flash loans dangerous tools that endanger user funds, while others believe flash loans merely expose protocol vulnerabilities earlier. If one thing is clear, it's that flash loans are helping to eliminate weaknesses in this field, albeit at a high cost for some users.\n\nAccording to Crypto Briefing, as 2020 approaches its end, DeFi protocols have lost $346 million so far. The next step for these protocols is to collaborate with security companies to recover lost funds.\n\nSource: Babite Information (ID: bitcoin8btc)\n\n---\ntuoniaox.com has migrated all content to hashspring.com with editor authorization and will continue output on hashspring.com." } ```
```json
{
"translatedTitle": "Flash Loan Attacks Continue to Succeed, DeFi Loses Over $16 Million in One Week",
"translatedContent": "[This article was updated on November 19, 2020 from tuoniaox.com]\n\nHackers exploited flash loans to obtain $16.4 million worth of ETH and DAI from DeFi projects Akropolis, Value DeFi Protocol, and Origin Protocol.\n\nThe Value DeFi attacker used ETH obtained through flash loans to exchange for DAI and USDT, depositing part of the DAI into Value DeFi's multi-stablecoin vault. They then conducted a series of stablecoin swaps between USDT, USDC, and DAI, aiming to exploit the pricing of Value DeFi vault withdrawal methods, causing $7.4 million in losses before the hacker returned $2 million.\n\nValue DeFi has suspended vault operations as the team needs to obtain account balances of each user who deposited funds before the attack occurred to calculate accurate compensation amounts.\n\nAs for Origin Protocol, which lost $7 million, similar methods continue to exploit flash loans on liquidity platforms like Uniswap. Meanwhile, funds deposited in the vault have also been frozen, as the company warned against purchasing any OUSD since current prices cannot reflect their underlying assets. If Origin cannot recover user-deposited funds, the team is expected to propose a plan to compensate users.\n\nAkropolis lost $2 million due to exploitation of pool tokens without asset backing. Akropolis has added checks for deposited tokens and reentrancy protection for deposits and withdrawals. Next week, the team plans to conduct additional contract testing and gradually reopen AKRO & ADEL staking pools.\n\nThrough flash loans, users can borrow directly from DeFi protocols without providing collateral, provided the loan is repaid within the same block. This enables speculators to exploit protocol vulnerabilities without requiring substantial initial capital. As DeFi attracted numerous new users in 2020 due to absurdly high APYs (exceeding traditional bank savings), such attacks have been on the rise.\n\nWithin the DeFi community, some consider flash loans dangerous tools that endanger user funds, while others believe flash loans merely expose protocol vulnerabilities earlier. If one thing is clear, it's that flash loans are helping to eliminate weaknesses in this field, albeit at a high cost for some users.\n\nAccording to Crypto Briefing, as 2020 approaches its end, DeFi protocols have lost $346 million so far. The next step for these protocols is to collaborate with security companies to recover lost funds.\n\nSource: Babite Information (ID: bitcoin8btc)\n\n---\ntuoniaox.com has migrated all content to hashspring.com with editor authorization and will continue output on hashspring.com."
}
```