- Sentiment was the victim of a reentry assault on 4 April and the assailant took nearly $1 million.
- Hackers, who continue to make the DeFi market a top target, recently preyed on Sentiment.
Sentiment, a DeFi lending platform, experienced a reentrancy assault on 4 April where the attacker stole close to $1 million. The platform later released a patch.
1/4
A status update on the current situation: At approximately 06:00:00 PM +UTC The Sentiment team became aware of abnormal borrowing activity which has now been declared as a malicious exploit.
— Sentiment (@sentimentxyz) April 5, 2023
Sentiment recently fell prey to hackers, who continue to make the DeFi market a top target. They became “aware of abnormal borrowing activity, which has now been declared as a malicious exploit,” the team said, admitting that the assault had occurred. To address the issue, the team paused the main contract and limited the capability to withdrawals only.
Leading specialists also issued a warning regarding an increase in fraud and scam cases in the DeFi sector as it prepares for an influx of new projects. According to reports, hackers have grown accustomed to the most recent DeFi adjustments, making the sector vulnerable to additional assaults.
A deep dive into the specifics
The team collaborated with external security experts to implement a user-friendly solution to the problem. As a result, users can settle debts and quit their employment. The team is also said to be working with law officials and other parties to identify the offender and recover the money.
On Arbitrum, people exploited sentiment to collect money. The exact sum happens to be unclear, but it appears to be closer to $1 million. Analysis of the attack states that the hacker “used the view re-entrance Balancer bug to execute malicious code before pool balances were updated and steal money using overpriced collateral.”
According to reports, the overall value of cryptocurrency hacking surpassed $3.8 billion in 2022. However, according to Chainalysis, not all breaches are thought to have occurred traditionally, a Financial Express article says.
Rising victims of deFi attacks
In the past few months, there have been quite a few assaults in the DeFi space. Furthermore, the crypto space on the whole has been witnessing a difficult time since the beginning of 2023. Additionally, about $200 million was taken from Euler Finance recently. After negotiating with the team, the intruder apologized and returned the money—a peculiar development.
Over $200 million was lost in the DeFi market overall in March. That was primarily brought on by Euler witnessing a sizable amount stolen, but attacks are still a possibility. The overall amount lost in February was considerably less, totaling only about $21 million.
Future cryptocurrency initiatives will need to take extra care to ensure that their platforms are secure. Teams will want to guarantee investor protection as legislation becomes more crucial.
Source: https://ambcrypto.com/exploits-of-2023-how-sentiment-became-a-victim-to-this-malicious-hack/