{"id":75525,"date":"2023-03-14T13:44:00","date_gmt":"2023-03-14T11:44:00","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=75525"},"modified":"2025-09-10T12:08:44","modified_gmt":"2025-09-10T09:08:44","slug":"euler-finance-team-blocks-vulnerable-module","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/euler-finance-team-blocks-vulnerable-module\/","title":{"rendered":"Euler Finance team blocks vulnerable module"},"content":{"rendered":"<p>The DeFi protocol Euler Finance disabled the vulnerable EToken module, blocking deposits.<\/p>\n<p><!--more--><\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">An update on our work today to recover funds for Euler protocol users. <\/p>\n<p>Here are a few actions we took immediately:<\/p>\n<p>1. Stopped the direct attack as soon as possible by helping disable the EToken module, which blocked deposits and the vulnerable donation function<\/p>\n<p>2. Engaged TRM\u2026 <a href=\"https:\/\/t.co\/6ZClE9uGoH\">https:\/\/t.co\/6ZClE9uGoH<\/a><\/p>\n<p>\u2014 Euler Labs (@eulerfinance) <a href=\"https:\/\/twitter.com\/eulerfinance\/status\/1635431726364147712?ref_src=twsrc%5Etfw\">March 14, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>The project team has already notified U.S. and U.K. law enforcement authorities about <a href=\"https:\/\/u1f987.com\/en\/news\/euler-finance-hacked-for-196-million\">a $196 million hack<\/a>. In addition, Euler Finance has reached out to analytics firms Chainalysis and TRM Labs to assist with the investigation.\u00a0<\/p>\n<p>The project representatives also contacted the hacker and offered a reward for returning the stolen funds.\u00a0<\/p>\n<p>According to available information, the attacker exploited a flaw in the <a href=\"https:\/\/u1f987.com\/en\/news\/what-are-flash-loans\">instant-loan<\/a> mechanism by posting an unsecured collateral. Due to a bug in the smart contract, the attacker was able to liquidate the debt and withdraw the funds.<\/p>\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\">\n<p lang=\"en\" dir=\"ltr\">One of our auditing partners, <a href=\"https:\/\/twitter.com\/Omniscia_sec?ref_src=twsrc%5Etfw\">@Omniscia_sec<\/a>, prepared a technical post-mortem and analysed the attack in great detail. You can read their report here:<a href=\"https:\/\/t.co\/u4Z2xdutwe\">https:\/\/t.co\/u4Z2xdutwe<\/a><\/p>\n<p>In short, the attacker exploited vulnerable code which allowed it to create an unbacked token debt\u2026 <a href=\"https:\/\/t.co\/FGnPqvYUGB\">https:\/\/t.co\/FGnPqvYUGB<\/a><\/p>\n<p>\u2014 Euler Labs (@eulerfinance) <a href=\"https:\/\/twitter.com\/eulerfinance\/status\/1635431834631766018?ref_src=twsrc%5Etfw\">March 14, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>According to the Sherlock auditing group, which had previously collaborated with Euler, the vulnerability remained undetected for eight months. The company said that WatchPug, which audited the protocol in July 2022, did not uncover a critical flaw.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Similarly, Sherlock stands behind every auditor who reviewed Euler. <\/p>\n<p>Sherlock initially worked with <a href=\"https:\/\/twitter.com\/cmichelio?ref_src=twsrc%5Etfw\">@cmichelio<\/a> to audit the first version of Euler in Dec 2021, then with <a href=\"https:\/\/twitter.com\/shw9453?ref_src=twsrc%5Etfw\">@shw9453<\/a> to audit a very small update in Jan 2022, and finally with <a href=\"https:\/\/twitter.com\/WatchPug_?ref_src=twsrc%5Etfw\">@WatchPug_<\/a> to audit EIP-14 in July 2022.<\/p>\n<p>\u2014 SHERLOCK (@sherlockdefi) <a href=\"https:\/\/twitter.com\/sherlockdefi\/status\/1635366470657130497?ref_src=twsrc%5Etfw\">March 13, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Sherlock also helped the affected project draft a $4.5 million lawsuit, which was approved on March 14. As a result, the company unlocked $3.3 million to reimburse losses. Earlier on March 10, Hedera Hashgraph disclosed the withdrawal of an undisclosed amount following a platform breach.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The DeFi protocol Euler Finance disabled the vulnerable EToken module, blocking deposits.<\/p>\n","protected":false},"author":1,"featured_media":75526,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1154,1093],"class_list":["post-75525","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-crimes","tag-defi"],"aioseo_notices":[],"amp_enabled":true,"views":"14","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/75525","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=75525"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/75525\/revisions"}],"predecessor-version":[{"id":75527,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/75525\/revisions\/75527"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/75526"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=75525"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=75525"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=75525"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}