Ancilia Reports Root Cause of ParaSpace Attack
According to reports from the Web3 network security company Ancilia, the root cause of the attack on the NFT lending protocol ParaSpace occurred in the scaledBalanceOf() function of the contract 0xddde38696fbe5d11497d72d8801f651642d62353, which is used to calculate the user’s collateral through the supply() function. However, manipulating the number of APE tokens in the function getPooledApeByShares() allows scaledBalanceOf() to return a large value. Users can own a large amount of collateral and use it to borrow more assets.
Ancilia: The root cause of the ParaSpace attack occurred in the scaledBalanceOf() function of the 0xddde3 contract
Analysis based on this information:
Web3 network security firm Ancilia has reported that the root cause of the attack on the NFT lending protocol ParaSpace occurred in the scaledBalanceOf() function of the contract 0xddde38696fbe5d11497d72d8801f651642d62353 which is used to calculate users’ collateral through the supply() function. The attacker manipulated the number of APE tokens in the function getPooledApeByShares() allowing scaledBalanceOf() to return a large value. As a result, users were able to own a large amount of collateral, which could be used to borrow more assets.
The attack on ParaSpace has highlighted the importance of secure smart contract programming. Smart contracts, which facilitate the exchange of assets and data without intermediaries, are powered by blockchain technology. However, they are also vulnerable to attacks if not properly secured.
Web3 network security companies like Ancilia offer solutions to help ensure the integrity of smart contracts. By analyzing smart contracts and identifying vulnerabilities, these companies can help developers to build more secure and resilient systems.
In conclusion, the ParaSpace attack serves as a reminder of the importance of security in the world of DeFi (decentralized finance), where millions of dollars are at stake. While smart contracts offer many benefits, they must be built with security in mind. Ancilia’s report sheds light on the need for robust security measures to prevent such attacks from happening in the future.
This article and pictures are from the Internet and do not represent Fpips's position. If you infringe, please contact us to delete:https://www.fpips.com/6351/
It is strongly recommended that you study, review, analyze and verify the content independently, use the relevant data and content carefully, and bear all risks arising therefrom.
Recommended articles
-
Zilliqa co-founder Launches ROLL1NG THUND3ERZ – A Game and Hardware Company for Web3
On February 14, Max Kantelia, the co-founder of Zilliqa, announced the launch of the Web3 game and hardware company \”ROLL1NG THUND3ERZ\”, which will not only pl…
-
INX Digital Company Update: A Look at the Annual Financial Report for 2022
On April 1, it was reported that The INX Digital Company, Inc., the operator of the crypto exchange, announced its annual financial report as of December 31, 2022. Data showed that
-
PancakeSwap and ESPL Clash Over IFO Dispute
On February 20, the decentralized trading platform PancakeSwap and the Singapore E-sports club Esports Players League (ESPL) had a dispute over the IF0 conduct…
-
What is TB Platform Coin (Recommended Platform Coin)
What is TB Platform Coin? According to official introduction, TB platform coin i
-
Why is the blockchain frozen (Why is the blockchain crashing)
Why is the blockchain frozen? Why is the blockchain frozen? The characteristics
-
What Can Xingyun MCC Do (Xingyun Company Official Website)
What can Xingyun MCC do? According to official sources, Xingyun MCC can be used
-
Forta’s new Entrusted Pledge Function: Rewarding its Community for Network Protection
It is reported that the encryption security company Forta announced the launch of the entrusted pledge function, allowing all FORT holders to receive rewards f…
-
NOWPayments Integrates with BOBA Network to Revolutionize Payments
On March 20th, it was reported that the encrypted payment gateway NOWPayments integrates with the Boba Network. Enterprises using NOWPayments can use BOBA tokens to make payments,
-
The Sudoswap Community’s Proposal for NFT Transaction Agreement
On February 16, the NFT transaction agreement sudoswap community put forward a necklace proposal to allow SUDO to transfer money and implement the Uniswap liqu…
-
Tether Announces Excess Reserves to Reach $1.66 Billion by Q1, 2023
On March 24th, Tether\’s Chief Technology Officer, Paolo Ardoino, said that Tether would achieve a profit of $700 million in the first quarter of 2023, bringing its excess reserves
-
Nakamigos NFTs: The Latest Buzz in the Crypto World
According to reports, as of the time of press release, the total turnover of Nakamigos series NFTs was approximately 10710 ETHs, with a market value of approximately 8630 ETH. The
-
When did the Iost coin go live
<img src='https://img.doulai.com/pic/enpic.php?k=When will the Iost coin be launched? When will the Iost coin be launched? When will the Iost coin be launched? When will the IoST coin be launched? When will the IoST coin be launched? According to official news, on June 9th at 11:00 am, the “Main Board” area of the Huo coin global station will open IOST trading. From a time perspective, as early as December 2019, HuoCoin had already opened the IOST charging service; Starting from early June, IOST’s recharge service was officially launched, and a total of 30 IOSTToken trading functions were simultaneously activated. Users can use BTC, ETH, and USDC to participate in activities and share IOST rewards; At the end of July, the IOST spot market officially opened, with a price of 0.024U and a 24-hour increase of over 130%.
-
BTC Transactions and Difficulty Level: Latest Updates
According to reports, BTC.com data shows that there are currently 7531 unconfirmed transactions across the Bitcoin network, with a computing power of 358.42 EH/s and a 24-hour tran
-
Canadian Securities Administration to Tighten Cryptocurrency Exchange Requirements
It is reported that, according to two people familiar with the plan, the Canadian Securities Administration (CSA) will tighten the requirements for the cryptoc…
-
Risk trading companies DRW and Nascent deny investing in OPNX
According to reports, crypto risk trading company DRW and venture capital firm Nascent have denied investing in OPNX. OPNX is a bankruptcy claims exchange founded by the same group
-
What platform is Suncoin online (Is Suncoin potential)?
What platform is Suncoin online? Suncoin (SUN) is a project focused on Tron\’s D