Head Topics

Hackers copied Mango Markets attacker's methods to exploit Lodestar: CertiK

United States News News

Hackers copied Mango Markets attacker's methods to exploit Lodestar: CertiK
United States Latest News,United States Headlines
  • 📰 Cointelegraph
  • ⏱ Reading Time:
  • 49 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 23%
  • Publisher: 51%

The attack wasn't sophisticated in nature, but rather took advantage of bad protocol design and lack of security audits.

According to a post-mortem analysis provided by CertiK of the $5.8 million Lodestar Finance exploit that occurred on Dec. 10,

6. 2.8 Million of the GLP is recoverable, which is worth about $2.4 million. We are going to reach out to the hacker and...In a similar instance, CertiK said that Lodestar Finance hackers"artificially pumped the price of an illiquid collateral asset which they then borrow against, leaving the protocol with irretrievable debt."

The attack occurred through a vulnerability in the PlutusDAO's plvGLP token on Lodestar. According to its documentation, Lodestar"uses verified, secure Chainlink price feeds for every asset it offers with the exception of plvGLP." Instead, the exchange rate of plvGLP to GLP relied on total assets divided by total supply on Lodestar.

The borrowings quickly consumed all liquidity on the platform, leading the hacker transfer the funds out of Lodestar and leaving users with bad debt. It is estimated that the exploiter made a total of $6.9 million in profits through the attack vector.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

Cointelegraph /  🏆 562. in US

United States Latest News, United States Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Arbitrum money market Lodestar Finance exploitedArbitrum money market Lodestar Finance exploitedThe exploiter was able to successfully manipulate the exchange rate of the plvGLP token to make it 83% more valuable than it should have been.
Read more »

Lodestar Finance exploited in flash loan attackLodestar Finance exploited in flash loan attackLodestar attack resembled the Mango Markets exploit in which the attacker manipulated price oracle data.
Read more »

Hacker Steals $6.9 Million From Arbitrum-Based Defi Protocol Lodestar Finance – Defi Bitcoin NewsHacker Steals $6.9 Million From Arbitrum-Based Defi Protocol Lodestar Finance – Defi Bitcoin NewsReports detail that the DeFi protocol Lodestar Finance lost roughly $6.9 million from the vulnerability on Saturday.
Read more »

Elite Hackers Made Almost $1 Million Last Week, Here’s HowElite Hackers Made Almost $1 Million Last Week, Here’s HowThe likes of Samsung, Canon, HP, Netgear, and TP-Link were targeted by elite hackers who exploited zero-day vulnerabilities last week. And that was a good thing, here's why.
Read more »

Elite Hackers Made Almost $1 Million Last Week, Here’s HowElite Hackers Made Almost $1 Million Last Week, Here’s HowThe likes of Samsung, Canon, HP, Netgear, and TP-Link were targeted by elite hackers who exploited zero-day vulnerabilities last week. And that was a good thing, here's why.
Read more »

How Hackers Take Down WebsitesHow Hackers Take Down WebsitesWhen a website goes down, it can be a big deal. But how do hackers bring down sites?
Read more »



Render Time: 2025-02-24 12:10:40