{"id":9865,"date":"2024-01-17T10:11:30","date_gmt":"2024-01-17T08:11:30","guid":{"rendered":"https:\/\/forklog.com\/en\/socket-cross-chain-protocol-loses-3-3-million-in-exploit\/"},"modified":"2024-01-17T10:11:30","modified_gmt":"2024-01-17T08:11:30","slug":"socket-cross-chain-protocol-loses-3-3-million-in-exploit","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/socket-cross-chain-protocol-loses-3-3-million-in-exploit\/","title":{"rendered":"Socket Cross-Chain Protocol Loses $3.3 Million in Exploit"},"content":{"rendered":"<p>The team behind the cross-chain bridge aggregator Socket reported an attack resulting in a $3.3 million loss for the protocol.<\/p>\n<blockquote class=\"twitter-tweet\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">Urgent<\/p>\n<p>Socket has experienced a security incident which affected wallets with infinite approvals to Socket contracts.<\/p>\n<p>We have identified the issue &#038; have paused the affected contracts.<\/p>\n<p>We\u2019re working on the situation &#038; will keep you informed with regular updates &#038; next steps.<\/p>\n<p>\u2014 Socket (@SocketDotTech) <a href=\"https:\/\/twitter.com\/SocketDotTech\/status\/1747349422730813525?ref_src=twsrc%5Etfw\">January 16, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cSocket has experienced a security incident affecting wallets with infinite contract approvals. We have identified the issue and paused the affected contracts,\u201d the developers wrote.<\/p>\n<\/blockquote>\n<p>They advised users to revoke all approvals for security reasons.<\/p>\n<p>The exploit was initially discovered by a researcher known as Spreek.<\/p>\n<blockquote class=\"twitter-tweet\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">Socket\/Bungee approval being exploited rn. several million already gone. attack is ongoing <a href=\"https:\/\/t.co\/8C25GBPeuo\">pic.twitter.com\/8C25GBPeuo<\/a><\/p>\n<p>\u2014 Spreek (@spreekaway) <a href=\"https:\/\/twitter.com\/spreekaway\/status\/1747337879771033632?ref_src=twsrc%5Etfw\">January 16, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cSeveral million already gone. Attack is ongoing,\u201d he noted, providing the attacker&#8217;s address.<\/p>\n<\/blockquote>\n<p>He also advised revoking approvals but urged caution and the use of only verified links. <\/p>\n<p>Less than an hour later, the expert noted that transactions to the hacker&#8217;s wallet had ceased.<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cI think this pause has fixed the situation, and attacks are likely no longer possible. So, if you\u2019re worried about revoking now, you can probably relax,\u201d Spreek concluded.<\/p>\n<\/blockquote>\n<p>According to PeckShield experts, the exploit resulted from \u201cincomplete verification of user input data,\u201d which was used to steal funds from those who approved the vulnerable SocketGateway contract.<\/p>\n<blockquote class=\"twitter-tweet\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">Today&#8217;s hack on <a href=\"https:\/\/twitter.com\/SocketDotTech?ref_src=twsrc%5Etfw\">@SocketDotTech<\/a> results in the loss of >$3.3m. <\/p>\n<p>The bad route exploited in the hack was added 3 days ago and is now disabled. Here are related txs: <br \/>\u2014 add route tx: <a href=\"https:\/\/t.co\/lxw7iA1kn4\">https:\/\/t.co\/lxw7iA1kn4<\/a><br \/>\u2014 disable route tx:<a href=\"https:\/\/t.co\/QMHfI4YeuU\">https:\/\/t.co\/QMHfI4YeuU<\/a><\/p>\n<p>The hack is due to\u2026 <a href=\"https:\/\/t.co\/QdBBgVF287\">https:\/\/t.co\/QdBBgVF287<\/a> <a href=\"https:\/\/t.co\/yNxF5vCwax\">pic.twitter.com\/yNxF5vCwax<\/a><\/p>\n<p>\u2014 PeckShield Inc. (@peckshield) <a href=\"https:\/\/twitter.com\/peckshield\/status\/1747353782004900274?ref_src=twsrc%5Etfw\">January 16, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>The attacker created a route for the attack three days before the incident by deploying a contract.<\/p>\n<p>In 2023, the crypto industry lost $1.8 billion due to hacking and fraud.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The team behind the cross-chain bridge aggregator Socket reported an attack resulting in a $3.3 million loss for the protocol. Urgent Socket has experienced a security incident which affected wallets with infinite approvals to Socket contracts. We have identified the issue &#038; have paused the affected contracts. We\u2019re working on the situation &#038; will keep [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":9864,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1210,44],"class_list":["post-9865","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cross-chain-protocols","tag-cybercrime"],"aioseo_notices":[],"amp_enabled":true,"views":"65","promo_type":"","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/9865","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=9865"}],"version-history":[{"count":0,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/9865\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/9864"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=9865"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=9865"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=9865"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}