- The vulnerability in the company’s website code permitted hackers to exploit it.
- The hackers took away almost $265,000K.
Kyber, a blockchain-based liquidity hub, found a vulnerability to the company’s website code that permitted hackers to take away about $265,000K.
As per the statement of Kyber, Two “whale” addresses seemed to be influenced by the attack, which has plans to compensate for the losses. The company revealed that it detected the exploit, which let hackers to put a “false acceptance, permitting an attacker to transfer the funds of clients to his address,” on September 1 and counterbalanced the hazard in less than two hours.
The exploit affected KyberSwap, Defi’s first Dynamic Market Maker and a platform that permits clients to swap the currencies on various blockchains.
The website code gave permission to the hackers.
The blockchain contracts of KyberSwap were not damaged. The issue came from exploited Google Tag Manager code on the website of the company, in line with the statement from the company.
Kyber posted on Twitter that: “We heartily wish all #DeFi projects to organise a in-depth check on your interface code and linked Google Tag Manager (GTM) scripts as the hacker may have aimed different sites.”
The attack on Kyber was comparably small as compared to other recent attacks on DeFi projects, which have witnessed a number of multimillion-dollar burglaries of clients’ funds. But, it once again pointed out the broad spectrum of ways DeFi clients are exposed to these kinds of attacks.
Source: https://www.thecoinrepublic.com/2022/09/03/kyber-network-revealed-225m-exploit-promises-to-refund/