Onyx Protocol’s $3.8 Million Hack: Insider Threats or External Attack?
28.09.2024 12:00 1 min. read Alexander Stefanov
Onyx Protocol recently suffered a significant exploit, resulting in a loss of $3.8 million.
Hacken, a security auditing firm, investigated the incident, revealing that the attack utilized a malicious contract created shortly before targeting Onyx. The hacker exploited vulnerabilities in the platform to drain its native stablecoin, Virtual USD (VUSD).
This marks the second significant breach for Onyx since November 2023, leading to confusion and further scams on social media. Although Onyx assured users that VUSD remains operational, the incident has disrupted its peg, causing it to drop to $0.39 from its intended value of $1.
The attacker managed to exploit low liquidity in trading pairs by executing a series of transactions, allowing them to withdraw a total of $3.8 million in VUSD. The transactions involved borrowing WETH and creating a series of spam transactions to manipulate the exchange rate.
Additionally, multiple assets from Onyx were affected during the hack, including significant transfers of VUSD and Onyxcoin (XCN). The incident highlights persistent vulnerabilities in DeFi protocols, particularly those derived from Compound V2, which continue to be exploited despite prior warnings.
Speculation around the attack suggests it could be linked to a rogue insider, possibly even North Korean hackers. This exploit not only raises alarms about security flaws but also about potential insider threats within crypto projects.
-
1
US Treasury Sanctions Iran-Backed Rebel Network Over Crypto Transactions and Arms Supply
05.04.2025 15:00 2 min. read -
2
American Woman Loses Millions in Sophisticated Crypto Scam
04.04.2025 18:00 2 min. read -
3
Bloomberg Strategist Predicts Bitcoin Crash to $10,000
07.04.2025 15:30 1 min. read -
4
Australia Cracks Down on Almost 100 Crypto Companies Linked to Fraudulent Scams
09.04.2025 20:00 2 min. read -
5
$20 Million AI Scam Uncovered in Spain: Criminal Network Exposed
09.04.2025 14:00 2 min. read
Hackers Target UK Official’s Account in Crypto Scam Disguised as Government Project
A recent cyberattack targeting a UK government official’s social media account has highlighted ongoing concerns over digital impersonation and crypto scams.
NFT Trader Faces Prison for Hiding Millions in CryptoPunk Profits from IRS
A former NFT trader is facing potential prison time after admitting to hiding millions in profits from the IRS through undeclared sales of high-value digital assets.
Crypto Wallets Targeted by Sophisticated Malware Campaign
Cybersecurity researchers are sounding the alarm after discovering a new and increasingly sophisticated attack targeting the crypto community.
Australia Cracks Down on Almost 100 Crypto Companies Linked to Fraudulent Scams
Australia’s efforts to combat crypto-related fraud have intensified, with the country’s Securities and Investments Commission (ASIC) targeting 95 companies allegedly involved in deceptive schemes like pig butchering scams.
-
1
US Treasury Sanctions Iran-Backed Rebel Network Over Crypto Transactions and Arms Supply
05.04.2025 15:00 2 min. read -
2
American Woman Loses Millions in Sophisticated Crypto Scam
04.04.2025 18:00 2 min. read -
3
Bloomberg Strategist Predicts Bitcoin Crash to $10,000
07.04.2025 15:30 1 min. read -
4
Australia Cracks Down on Almost 100 Crypto Companies Linked to Fraudulent Scams
09.04.2025 20:00 2 min. read -
5
$20 Million AI Scam Uncovered in Spain: Criminal Network Exposed
09.04.2025 14:00 2 min. read
