Skip to main content

Axie Infinity Loses $620 Million After Hacker Compromised Ronin Validators

https://motleybloggers.com/wp-content/uploads/2022/03/axie-infinity-loses-620-million-after-hacker-compromised-ronin-validators.jpg

Axie Infinity Loses $620 Million After Hacker Compromised Ronin Validators

According to Sky Mavis, the creators of the blockchain NFT game Axie Infinity, the Ronin network has been attacked, and a hacker has managed to siphon 173,600 in ethereum and 25.5 million usd coin (USDC). The attacker has obtained roughly $620 million worth of crypto assets, and the Ronin bridge and Katana Dex have been paused.


The Largest NFT Blockchain Game Axie Infinity Suffers From a $620 Million Hack


The largest non-fungible token (NFT) blockchain game, Axie Infinity, has suffered from an attack on Tuesday after the Ronin network validators were compromised. Sky Mavis, the company behind the Axie Infinity project, explained that the validators were compromised as early as March 23.


The funds were drained in two transactions (transaction 1 and transaction 2) and Sky Mavis discovered the attack after a user complained that they could not withdraw 5,000 ether from the Ronin bridge.


“The attacker used hacked private keys in order to forge fake withdrawals,” Sky Mavis’s post mortem statement discloses. While the Ronin bridge and Katana Dex has been halted, Sky Mavis also said: “We are working with law enforcement officials, forensic cryptographers, and our investors to make sure all funds are recovered or reimbursed. All of the AXS, RON, and SLP on Ronin are safe right now.”


The team further explained that the project uses nine validator nodes to run Ronin, and in order to deposit or withdraw, five out of nine are needed to process a transaction.


“The attacker managed to get control over Sky Mavis’s four Ronin Validators and a third-party validator run by Axie DAO,” Sky Mavis said. “The validator key scheme is set up to be decentralized so that it limits an attack vector, similar to this one, but the attacker found a backdoor through our gas-free RPC node, which they abused to get the signature for the Axie DAO validator.”


What’s worse is that Sky Mavis notes that the attacker got away with it because of a change made back in November 2021, and they discontinued the “Axie DAO allowlisted” scheme the very next month.


However, the “allowlist access was not revoked” the team said, and Sky Mavis added that “once the attacker got access to Sky Mavis systems they were able to get the signature from the Axie DAO validator by using the gas-free RPC.” Sky Mavis’s post mortem continued:


We have confirmed that the signature in the malicious withdrawals match up with the five suspected validators.

The attack against Ronin is one of the largest hacks against a crypto protocol this year, as it surpassed the attack against the Wormhole bridge. That specific attack against the Wormhole bridge saw the loss of $320 million, but the funds were replaced by Jump Crypto. Sky Mavis explained on Tuesday that the team is working with law enforcement in order to “ensure the criminals get brought to justice.”


Moreover, the team is in the process of discussing with stakeholders and talking about how to make sure users are compensated. “Sky Mavis is here for the long term and will continue to build,” the team’s post mortem concludes.


What do you think about Axie Infinity losing $620 million to someone who found a validator exploit? Let us know what you think about this subject in the comments section below.



Origina post from
https://motleybloggers.com/axie-infinity-loses-620-million-after-hacker-compromised-ronin-validators/

Comments

Post a Comment

Popular posts from this blog

US Senator Urges Congress to Pass Her Crypto Bill — Claims It Would’ve Prevented FTX Bankruptcy

http://motleybloggers.com/wp-content/uploads/2022/11/us-senator-urges-congress-to-pass-her-crypto-bill-claims-it-wouldve-prevented-ftx-bankruptcy.jpg U.S. Senator Cynthia Lummis believes that the FTX bankruptcy wouldn’t have happened under the Lummis-Gillibrand crypto bill. She stressed: “It’s clearer now than ever before that we need comprehensive regulation in the digital asset space.” Senator Lummis Explains How Her Crypto Bill Would Prevent the FTX Catastrophe U.S. Senator Cynthia Lummis (R-WY) explained in a series of tweets Monday why the collapsed cryptocurrency exchange FTX wouldn’t have gone bankrupt had Congress passed her crypto bill. The cryptocurrency trading platform filed for bankruptcy last week. The senator from Wyoming has been a supporter of bitcoin for quite some time. She personally owns BTC and believes that bitcoin is something that the Federal Reserve should hold on its balance sheet. She has said repeatedly that the cryptocurre...
Post a Comment
Read more

Bitcoin, Ethereum Technical Analysis: ETH Back Under $2,000 as Balenciaga Gains Lose Steam

https://motleybloggers.com/wp-content/uploads/2022/05/bitcoin-ethereum-technical-analysis-eth-back-under-2000-as-balenciaga-gains-lose-steam.jpg Following strong gains to start the week, BTC once again fell under $30,000, as crypto prices moved lower on Tuesday. The downturn follows up from yesterday’s rally, which came as Balenciaga announced it would be accepting crypto payments. ETH also dropped, falling under $2,000 today. Bitcoin Bitcoin fell under $30,000 on Tuesday, as bears returned to action following a green start to the week. Following a high of $30,547.50 during Monday’s session, BTC /USD fell to an intraday low of $28,975.56 earlier today. Today’s drop saw BTC fall by over 5% in the day, as bullish sentiment following the Balenciaga crypto announcement faded. BTC /USD – Daily Chart Since then, bears have now pushed prices closer to support at $28,800, which is an area where BTC has resided over the past few weeks. Looking at the chart, the 14-da...
Post a Comment
Read more

P2P Bitcoin Traders in Nigeria Think Outside the Box in the Wake of CBN Restrictions

After the Central Bank of Nigeria issued a directive targeting the country’s cryptocurrency industry, bitcoin and altcoin trade volumes on centralized exchanges immediately plunged. Nevertheless, the new regulations seem to have succeeded in boosting crypto trade volumes on informal markets or on peer-to-peer trading platforms. Nigerian Crypto Traders Get Creative Still, the increasing trades on informal platforms have also led to increased reports of users losing money to con artists. Moreover, with the CBN seemingly eager to see volumes of crypto trades plummet, Nigerian users had to find ingenious but legal ways of getting around the central bank’s imposed restrictions. As shown in one local report , one such legal way is through an app created by one local crypto start-up, Patricia. According to the report, this application is already enabling Nigerian users to buy or sell their crypto assets securely and without running afoul of CBN regulations. Therefore, in this repor...
Post a Comment
Read more