Rari Fuze hacker offered $10M bounty by Fei Protocol to return $80M loot

Share This Post

DeFi investigator BlockSec’s monitoring system detected a loss of more than $80 million — citing the root cause as a typical reentrancy vulnerability.

Decentralized finance (DeFi) platform Fei Protocol offered a $10 million bounty to hackers in an attempt to negotiate and retrieve a major chunk of the stolen funds from various Rari Fuse pools worth $79,348,385.61 or nearly $80 million.

On April 30, Fei Protocol informed its investors about an exploit across numerous Rari Capital Fuse pools while requesting the hackers to return the stolen funds against a $10 million bounty and a ‘no questions asked’ commitment.

While the exact losses from the exploit were not officially released, DeFi investigator BlockSec’s monitoring system detected a loss of more than $80 million — citing the root cause as a typical reentrancy vulnerability. While reentrancy bugs have been the main culprit in many exploits within the DeFi ecosystem, the $80 million loot makes the Fei Protocol exploit one of the largest reentrancy hacks ever.

Invocation flow. Source: BlockSec

Upon further investigations, Rari developer Jack Longarzo revealed a total of six vulnerable pools (8, 18, 27, 127, 144, 146, 156) that have been temporarily paused while an internal fix is underway. At the time of writing, Rari’s internal and external security engineers partnered with DeFi service provider Compound Treasury to further investigate and neutralize the hack.

Providing further insights into the development, blockchain investigator PeckShield narrowed down the exploit to a reentrancy bug, which allows hackers to use a function and make external calls to another untrusted contract.

Security-focused ranking platform CertiK told Cointelegraph that the attacker has sent 5400 Ether (ETH) (~$15,298,900) to Tornado Cash and still holds $64,245,245.43 (22,672.97 ETH) in their wallet. The attack has drained funds from the Rari pool whilst the Fei Pools (Tribe, Curve) remain unaffected.

Last year, in May 8, 2021, Rari Capital became victim to a high-priced exploit that was related to an integration with Alpha Venture DAO (previously Alpha Finance Lab). At the time of reporting, there have been no official announcements from the Fei Protocol team on the results of their investigation.

Related: Plan for $1M bug bounties and double the nodes in wake of $600M Ronin hack

As the crypto community goes through an ever evolving battle against hackers, numerous projects and protocols have decided to amp up their security measures. On April 28, the Ronin Network and Sky Mavis revealed plans to upgrade their smart contracts — following the $600 million hack in the previous month.

The Federal Bureau of Investigation (FBI) attributed the attack to North Korea-based and state-sponsored hacking group Lazurus, as it fired off a warning to other crypto and blockchain organizations.

Read Entire Article
spot_img
- Advertisement -spot_img

Related Posts

Stephen Miran to Lead Trump’s Economic Team: What It Means for Bitcoin’s Future

On Sunday, President-elect Donald J Trump revealed that Stephen Miran, who previously served during Trump’s first term, will helm the Council of Economic Advisers Miran is seen as a pro-bitcoin

Infomon Blends Pokémon Go With NFTs and X Integration

Imagine Pokémon Go but with NFT ownership, token rewards, and social media integration—welcome to Infomon, a revolutionary Web3 game that brings AR to the blockchain Quick Recap from OpenSeason

Bitcoin $178K Target In Sight? Analyst Highlights Bollinger Band Retest Mirroring Jan. 2024 Rally

Bitcoin has been on a correction path since it reached a new all-time high of $108,135 on December 17 Notably, this correction has seen the leading cryptocurrency decline by about 10% up until the

‘$600M Would Buy a Lot of Bitcoin’: Microstrategy Boss Steers Bezos Wedding Drama Toward Crypto

Michael Saylor, co-founder and executive chairman of Microstrategy, brought bitcoin into the spotlight during an online exchange with Jeff Bezos on X The Amazon founder found himself in the headlines

El Salvador Reinforces Bitcoin Allegiance: Purchases BTC in Defiance of IMF Agreement

The government of El Salvador has clarified that it will continue pushing bitcoin as part of its economic strategy, even as it inked an agreement with the IMF to wind down its bitcoin operations El

XRP Historic Moment Coming In 2025? This Crypto Exchange Believes So

In the cryptocurrency space, XRP is gaining much attention, and many people are making predictions regarding its prospects for 2025 Bitstamp, a cryptocurrency exchange, excites investors with its