Dexsport, a Web3 betting platform that supports cryptocurrency payment, reported a hacking incident that ended up in $400,000 in BUSD being stolen. According to the Dexsport team, on November 30, hackers exploited a vulnerability in the off-chain part related to the case-sensitive recording of unique transaction identifiers for processing deposits and improperly increased the balance of their wallets on the platform. After that they withdrew illicitly obtained coins.
The breach was quickly detected and fixed, with additional security mechanisms added. User funds were not compromised or affected.
“The vulnerability was not on the side of our smart contracts as they are constantly tested and audited by the leading security firms Certik and Pessimistic,” Dexsport spokesperson is quoted as saying. “We know that, in a trustless environment, the reputation is one of the main treasures, especially in a bear market. Therefore, we pay maximum attention to the high level of user experience and safety of user funds.”
Stolen coins were the platform’s own assets used as additional liquidity.
Operations were paused for a few hours, but currently all the workflow is retrieved. Withdrawals and deposits are delivered without delays.
Dexsport is a Web3 cryptocurrency-supporting betting platform. It is deployed on the Binance Smart Chain, OKX, Polygon, and Avalanche blockchains. The project provides a secure and transparent betting system via smart contracts and blockchain.
Source: https://www.livebitcoinnews.com/dexsport-detects-hack-user-funds-unaffected/