OKX decentralized exchange (DEX) suffered a $2.7 million hack on Dec. 13 after the private key of the proxy admin owner was reported to be leaked.
On Dec. 13, the blockchain security firm SlowMist Zone posted on X (formerly Twitter) that OKX DEX “encountered an issue.” According to the report, the issue began on Dec. 12, 2023, at approximately 10:23 pm UTC after the proxy admin owner upgraded the DEX proxy contract to a new implementation contract and the user began to steal tokens.
SlowMist Security Alert: OKX DEX Proxy Admin Owner’s Private Key Suspected to be Leaked
According to information from SlowMist Zone, the OKX DEX contract appears to have encountered an issue. After SlowMist’s analysis, it was found that when users exchange, they authorize…
— SlowMist (@SlowMist_Team) December 13, 2023
Then, at approximately 11:53 pm UTC, the proxy admin owner made another upgrade to the contract, and the user continued to exploit tokens. SlowMist’s analysis at the time said the attack “maybe” the result of the key of the proxy admin owner being leaked.
The DEX proxy was subsequently removed from the platform’s trusted list.
Scopescan, an on-chain analysis firm, also reported the attack, saying users were reporting the event. It reported that after contacting the DEX, it was told that an old abandoned contract was attacked but has been located and stopped.
Additionally the OKX DEX said any user losses affected by the hack will be “fully borne.”
Users reported an exploit event on the #OKX DEX contract.
We have contacted them and got the following response:
“The old abandoned MM contract was attacked, and the attack has been located and stopped.
The losses of the users involved will be fully borne.”
Exploiters… https://t.co/psuz4WcjGl pic.twitter.com/GrKUdrnGVk
— Scopescan (@0xScopescan) December 13, 2023
Related: Aerodrome and Velodrome DeFi platforms experience front-end hacks
According to a post from the blockchain security company PeckShield, the total loss of the OKX DEX attack was around $2.7 million in various cryptocurrencies. PeckShield advised users to “please revoke allowances” if there are any.
In light of the hack, one X user posted a reminder that just because something is “decentralized” doesn’t mean that assets are necessarily safe:
People say they want decentralization, so builders give them DEXs.
Just because its decentralized, folks think we won’t lose our assets. No you are wrong, you can still get hacked, and today’s unfort episode with OKX DEX is a reminder of “be careful of what you wish for”.
— Eugene Ng (I’m Hiring) (@Eug_Ng) December 13, 2023
Until September 2023, research shows that the crypto industry has suffered $1.5 billion in losses due to hacks, exploits and scams this year.
In the fourth quarter so far, Poloniex has faced an exploit resulting in over $100 million in digital asset losses, and the HECO Chain bridge hack cost more than $80 million in losses.
Coinelegraph reached out to OKX for additional information on the aforementioned exploit.
Magazine: This is your brain on crypto: Substance abuse grows among crypto traders
Source: https://cointelegraph.com/news/okx-dex-2-7-m-exploit-proxy-admin-contract-upgrade