Attack on Allbridge: BUSD/USDT Fund Pool targeted on BNB Chain

04/03/2023 07:29 • Blockchain Briefs • 105 views

On April 3rd, Allbridge tweeted that the attack targeted the BUSD/USDT fund pool on BNB Chain, and only the fund pool on BNB Chain was affected by the attack, but the vulnerability

On April 3rd, Allbridge tweeted that the attack targeted the BUSD/USDT fund pool on BNB Chain, and only the fund pool on BNB Chain was affected by the attack, but the vulnerability may extend to other fund pools. At present, the cross chain bridge has been temporarily suspended to prevent other fund pools from being attacked by hackers. After the vulnerability is fixed, it will restart. In addition, Allbridge has deployed a web interface for liquidity providers to open asset extraction. Finally, Allbridge stated that a plan is being prepared to compensate users affected by the attack.

Allbridge: Asset extraction interface has been deployed for liquidity providers to compensate users affected by the attack

Introduction

Allbridge, a cross-chain bridge protocol, recently suffered a security breach in its BUSD/USDT fund pool on Binance Smart Chain (BSC). On April 3, Allbridge confirmed that only the fund pool on BNB Chain was affected by the attack, but the vulnerability may extend to other fund pools as well. In response, Allbridge temporarily suspended its cross-chain bridge to prevent other fund pools from being attacked. This article will provide a detailed account of the attack and its aftermath.

What happened?

According to Allbridge, the attack happened on April 2nd, when an unknown hacker exploited a vulnerability in the BUSD/USDT fund pool’s contract code. The hacker managed to transfer 341,000 BUSD and 165,000 USDT, worth approximately $3.6 million, from the Allbridge fund pool to their own address. Allbridge promptly notified its users about the attack and suspended the cross-chain bridge.

Extent of the vulnerability

In its statement, Allbridge stated that the vulnerability may extend to other fund pools as well. This means that any other fund pool using the same contract code may be at risk of attack. To prevent such attacks, Allbridge has suspended the cross-chain bridge across all its supported blockchains.

Allbridge’s response

After the attack, Allbridge acted swiftly to contain the damage and prevent further attacks. The team contacted Binance and other exchanges to freeze the hacker’s assets and freeze others that might be involved in the attack. They are also working on fixing the vulnerability and restarting the cross-chain bridge after thoroughly auditing the code.
In addition, Allbridge has deployed a web interface for liquidity providers to open asset extraction. Asset extraction enables liquidity providers to withdraw their assets held in Allbridge’s fund pool following the attack’s disruption.
Furthermore, Allbridge has assured its users that it is preparing a compensation plan to compensate for losses that occurred due to the attack.

Conclusion

The attack on Allbridge’s BUSD/USDT fund pool is yet another reminder of the cybersecurity risks associated with blockchain and DeFi protocols. Allbridge acted quickly and responsibly to limit the damage and prevent future attacks. Still, the incident highlights the need for more robust security measures and constant auditing of protocols to detect and respond to potential threats effectively.

FAQs

Q1. Has Allbridge confirmed the source of the attack?
Allbridge has not yet shared any information on the source of the attack. However, they have assured users that they are working with relevant authorities and security experts to investigate the attack.
Q2. Can users still access their assets in Allbridge’s fund pool?
Allbridge has suspended the cross-chain bridge across all its supported blockchains to prevent further attacks. However, the team has deployed a web interface for liquidity providers to open asset extraction.
Q3. How can users protect themselves from such attacks in the future?
Users can protect themselves by staying informed about the latest cybersecurity threats and following best practices, such as using hardware wallets, using complex passwords, and avoiding suspicious links or emails.

This article and pictures are from the Internet and do not represent Fpips's position. If you infringe, please contact us to delete:https://www.fpips.com/13145/

It is strongly recommended that you study, review, analyze and verify the content independently, use the relevant data and content carefully, and bear all risks arising therefrom.

Like (0)

The Digital Collection Weekly Index rose 8.7 points to 64.0 points

Previous 04/03/2023 07:20

Everywhere Finance Raises $1.6 Million Through Token Sales

Next 04/03/2023 07:43

Blockchain Briefs

Rubic Integrates zkSync Era: Optimizing DeFi Trading

On April 8th, it was announced that Rubic, a multi chain DeFi platform, has integrated zkSync Era, allowing users to enjoy lightning fast transaction speeds and significantly reduc

04/08/2023
111
The Rise of Decentralized Finance: Understanding TVL in DeFi

According to reports, in the first week of April, the total lock in value (TVL) of Decentralized Finance (DeFi) was approximately $50 billion, roughly the same as on March 1. The l

Blockchain Briefs 04/03/2023
130
Blockchain Briefs

Why is BSV truly Bitcoin (is BSV Bitcoin)

Why is bsv true Bitcoin According to the BSV community, why is bsv true Bitcoin BSV is a point-to-point distributed Ledger protocol. This protocol was launched by independent software developer Benjamin Rameau in 2017; It will allow users to store and transfer token assets and other functions in smart contracts on Ethereum At present, many different blockchain projects are using this protocol to support these assets: 1. Ethereum 2.0: EIP-1559 (to be implemented soon), which is the first solution fully compatible with Ethereum technology. (Bitcoin) Is bsv BitcoinRecently, members of the Bitcoin SV community found that Bitcoin Cash cash (Bsv) is not “a point-to-point Electronic cash system” as stated in the Bitcoin white paper, but a bifurcation of Bitcoin. According to data statistics from BitInfoCharts, around 1am on February 11, 2019, the height of blocks on the Bitcoin network reached 1380000, approximately $300 million. According to the Coinmarketcap website, the price of ‘BSV’ is over $10. However, it is worth…

08/03/2023
93
Blockchain Briefs

CoinGecko included 1866 projects that were declared dead last year

According to reports, CoinGecko data shows that of the 6300 projects included in 2022, 1866 have been marked as \”dead coin.\”.
CoinGecko included 1866 projects that were declared de

04/01/2023
103
Blockchain Briefs

The Ongoing Challenge of Unconfirmed Transactions on the Bitcoin Network

According to reports, BTC.com data shows that there are currently 37078 unconfirmed transactions across the Bitcoin network, with a computing power of 345.76 EH/s and a 24-hour tra

04/09/2023
124
Blockchain Briefs

Stable Currency: Disagreements Between Democrats and Republicans Delay Legislative Agreement

On April 20th, it was reported that during the hearing of the House Financial Services Committee on the stable currency held on Wednesday, there were disagreements between Democrat

04/20/2023
94
Blockchain Briefs

Nigeria Turns to CBDC Amid Cash Shortage: A Closer Look

It is reported that due to a shortage of cash, Nigerians are turning to the country\’s central bank digital currency (CBDC). The Governor of the Central Bank of Nigeria (CBN), Godwi

03/22/2023
103
Blockchain Briefs

The Milk Caps Game POG of the 1990s Announces NFT Launch on Ethereum Chain

According to reports, the Milk Caps game POG of the 1990s announced the launch of NFT on the Ethereum chain on April 6th, followed by the physical POG sales of Web3 games and token

04/05/2023
109
Blockchain Briefs

Temporary Suspension of Lido’s Pledge+Withdrawal Function on Polygon Due to Error Discovery

It is reported that Lido, the liquidity pledge agreement, posted on social media that due to the discovery of errors affecting stMATIC\’s withdrawal, Lido\’s ple…

03/07/2023
135
Blockchain Briefs

Voyager Transfers Cryptocurrencies Worth Over $28 Million

According to reports, PeckShield monitoring shows that Voyager has transferred cryptocurrencies worth about US $28.7 million to the cryptocurrency exchange, in…

02/16/2023
126
Blockchain Briefs

Web3 startup Junggl Media completes a new round of financing

It is reported that Junggl Media, a Web3 startup, has completed a new round of financing and invested in Northbrook Capital Startup Fund. The specific amount of financing has not y

03/30/2023
87
Blockchain Briefs

Protecting Your Crypto Wallet: Understanding Phishing Attacks on Binance Smart Chain

According to reports, PeckShield has detected phishing website attacks, diverting 2237 BNBs ($767800) from liquidity providers. The attacker has already transferred 780 BNBs to Tor

04/19/2023
136
Blockchain Briefs

Cryptocurrency Powerhouse Greenidge Generation Holdings Strikes A Custody Agreement with Core Scientific

According to reports, cryptocurrency data centers and power generation companies Greenidge Generation Holdings Inc Greenidge announced the signing of a custody agreement with Bitco

04/28/2023
109
Blockchain Briefs

Arbitrum Foundation to Conduct Token Airdrop on March 23

On March 16, the Arbitrum Foundation announced that its Token ARB will be airdropped to community members on March 23, with a snapshot date of February 6, 2023. Arbitrum users will be able to check their eligibility for air drops and receive Tokens by visiting gov.arbitrum.foundation. Arbitum Foundation: ARB Token will be airdropped to ecosystem users on March 23 Analysis based on this information:The Arbitrum Foundation has recently announced that it will be conducting an airdrop for its Token ARB on March 23rd. Airdrop is essentially a marketing strategy where a company distributes free tokens to increase user engagement and product awareness. In this case, the Arbitrum Foundation has decided to conduct an airdrop to reward its loyal community members and potentially attract new users. The eligibility criteria for the airdrop is based on a snapshot date of February 6, 2023. This means that only community members who held the required amount of Arbitrum tokens on that specific date are…

03/16/2023
120
Blockchain Briefs

Ethereum futures contracts with open positions reaching a 22-month high

According to reports, according to Glassnode data, the open positions of Ethereum futures contracts have just reached a 22-month high of $709493182.
Ethereum futures contracts with

04/19/2023
105
Blockchain Briefs

Coin On Completes Exchange of New STG Tokens for Various Blockchains

According to reports, according to the latest announcement of Coin On, Coin On has completed the exchange of new STG tokens for AVAX C Chain, Arbitrum One, BNB Smart Chain (BEP20), Ethereum (ERC20), Fantom, and Polygon blockchains with the original STG tokens. The original STG tokens will be reused as the transaction code on the Coin On platform, and STG deposits and withdrawals are now open; The revoked STG token will use STGOLD as the transaction code. STGOLD recharging is now open and will no longer support STGOLD token withdrawals. Coin security reminds users who extract STGOLD after the initial exchange is completed to re deposit STGOLD on the Deposit Crypto page because STGOLD has no value, and can continue to convert STGOLD tokens into STG through the conversion function. Coin security: STG has completed the contract swap in blockchains such as Ethereum, Arbitrum One, and Polygon Analysis based on this information:The announcement from Coin On reveals that they have…

03/18/2023
119