{"id":15715,"date":"2024-07-31T12:22:38","date_gmt":"2024-07-31T09:22:38","guid":{"rendered":"https:\/\/forklog.com\/en\/terra-blockchain-relaunched-following-5-2-million-hack\/"},"modified":"2024-07-31T12:22:38","modified_gmt":"2024-07-31T09:22:38","slug":"terra-blockchain-relaunched-following-5-2-million-hack","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/terra-blockchain-relaunched-following-5-2-million-hack\/","title":{"rendered":"Terra Blockchain Relaunched Following $5.2 Million Hack"},"content":{"rendered":"<p>On July 31, a hacker attacked the Terra (Phoenix-1) network, stealing digital assets totaling approximately $5.2 million.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">?Attention Terra users: Please be advised that the chain will be halted shortly at block height 11430400 and transactions will not be processed during this time.<\/p>\n<p>We will be working with the validators on Terra (phoenix-1) to apply an emergency patch thereafter to remediate a\u2026<\/p>\n<p>\u2014 Terra ? Powered by LUNA ? (@terra_money) <a href=\"https:\/\/twitter.com\/terra_money\/status\/1818498438759411964?ref_src=twsrc%5Etfw\">July 31, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>According to the developers, the blockchain was halted at height #11,430,400 to implement fixes. <\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cWe are working with Terra validators to apply an emergency patch to address the suspected vulnerability,\u201d the publication stated.<\/p>\n<\/blockquote>\n<p>Beosin Alert analysts reported that the hacker managed to extract 60 million ASTRO, 3.5 million USDC, 500,000 USDT, and 2.7 BTC. <\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Terra blockchain was exploited for ~60M <a href=\"https:\/\/twitter.com\/search?q=%24ASTRO&#038;src=ctag&#038;ref_src=twsrc%5Etfw\">$ASTRO<\/a>, 3.5M <a href=\"https:\/\/twitter.com\/search?q=%24USDC&#038;src=ctag&#038;ref_src=twsrc%5Etfw\">$USDC<\/a>, 500k <a href=\"https:\/\/twitter.com\/search?q=%24USDT&#038;src=ctag&#038;ref_src=twsrc%5Etfw\">$USDT<\/a>, and 2.7 <a href=\"https:\/\/twitter.com\/search?q=%24BTC&#038;src=ctag&#038;ref_src=twsrc%5Etfw\">$BTC<\/a>.<\/p>\n<p>The attacker exploited a reentrancy vulnerability in the timeout callback of ibc-hooks. The vulnerability was disclosed in April this year:<a href=\"https:\/\/t.co\/CY39X28KyE\">https:\/\/t.co\/CY39X28KyE<\/a> <a href=\"https:\/\/t.co\/hY9xA40hbJ\">https:\/\/t.co\/hY9xA40hbJ<\/a><\/p>\n<p>\u2014 Beosin Alert (@BeosinAlert) <a href=\"https:\/\/twitter.com\/BeosinAlert\/status\/1818548029416411279?ref_src=twsrc%5Etfw\">July 31, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>The perpetrator exploited a reentrancy vulnerability related to a third-party IBC hooks module, which facilitates cross-chain contract calls and token transfers, researchers claim. <\/p>\n<p>The company also clarified that this vulnerability was discovered back in April. <\/p>\n<p>Three and a half hours after the shutdown, Terra resumed block production following an emergency update. At the time of the post, 67% of validators had updated their nodes to prevent a repeat attack.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">The Terra chain has resumed block production at approximately 4:19 AM UTC today and the emergency chain upgrade is now complete.<\/p>\n<p>Transactions are now being processed, and users may resume normal activities.<\/p>\n<p>Validators holding over 67% of the voting power on Terra have upgraded\u2026<\/p>\n<p>\u2014 Terra ? Powered by LUNA ? (@terra_money) <a href=\"https:\/\/twitter.com\/terra_money\/status\/1818552290372206614?ref_src=twsrc%5Etfw\">July 31, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>In a comment to <a href=\"https:\/\/www.theblock.co\/post\/308440\/attacker-exploits-ibc-hooks-vulnerability-to-steal-tokens-on-terra-blockchain\">The Block<\/a>, Sommelier Protocol co-founder Zaki Manian explained that the exploit discovered months ago was almost immediately fixed in the Cosmos ecosystem. However, Terra&#8217;s updates did not include this patch.<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cIt seems that Terra&#8217;s June upgrade did not apply the fix. All USDC from the [multichain platform] Axelar connected to Terra was stolen using the IBC hooks vulnerability. A large amount of ASTRO was also stolen,\u201d he clarified. <\/p>\n<\/blockquote>\n<p>Following the attack, ASTRO prices <a href=\"https:\/\/www.coingecko.com\/en\/coins\/astroport-fi\">plummeted by 54%<\/a>\u2014the coin fell from $0.45 to $0.2. Its market capitalization dropped below $10 million. Meanwhile, native assets of the Terra ecosystem remained largely unchanged in price. <\/p>\n<p>Back in June, Terraform Labs CEO Chris Amani asked the community to take control of the blockchain as the organization would cease to exist. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>On July 31, a hacker attacked the Terra (Phoenix-1) network, stealing digital assets totaling approximately $5.2 million. ?Attention Terra users: Please be advised that the chain will be halted shortly at block height 11430400 and transactions will not be processed during this time. We will be working with the validators on Terra (phoenix-1) to apply [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":15714,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[44,852],"class_list":["post-15715","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybercrime","tag-terra"],"aioseo_notices":[],"amp_enabled":true,"views":"22","promo_type":"","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/15715","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=15715"}],"version-history":[{"count":0,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/15715\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/15714"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=15715"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=15715"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=15715"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}