- Warp Finance got hacked via a flash loan attack.
- The hacker used a complicated scheme based on multiple protocols and swaps.
- The team has a plan to compensate users for losses.
Another DeFi project got hacked and lost about $8 million of user funds in DAI and USDC. The attacker exploited a sophisticated multi-protocol flash loan scheme and Tornado Cash to hide the digital trace.
Warp Finance is a DeFi platform that claims to offer "an optimized lending solution powering a liquidity engine." In other words, they allowed users to take cryptocurrency loans using stablecoins as collateral. The project was launched in October 2020.
What happened to Warp Finance money
Late on Thursday, the community members noticed irregular activity on Warp Finance protocol. Someone used multiple transactions within the flash loan scheme to drain USDC and DAI vaults of the protocol.
Flash loan is a handy DeFi feature that allows anyone to get an instant loan without the collateral provided that it is repaid within the same block. In the case of Warp Finance, the hacker used a complex scheme to loan more than their collateral value, which led to a lender losing money.
The project team confirmed the hack and recommended to refrain from depositing stablecoins to the protocol until the situation was investigated.
The exploiter got away with $7.7 million in DAI and USDC; however, the team claims that there are approximately $5.5 million that can be recovered from a collateral vault and used to cover the losses.
We will post a more detailed analysis and next steps for http://warp.finance in the coming days when we have a more robust understanding of the exploit that took place.
Emiliano Bonassi, a founder of DeFi Italy and a white hacker, noticed that hackers tend to launch complicated attacks with multiple loans and swaps on several protocols.
This is the second attack, which uses multiple flash liquidity, flash swaps via Uniswap, and flash loans via dYdX. We will see very complicated things via AaveAave V2 batch flash loans :)
The hack turned out to be costly
Meanwhile, another DeFi expert Nick Chong noted that hackers got away only with $1 million in ETH, while the rest went to paying fees.
What I immediately find interesting here is that it appears that much of the attacker's bounty went to fees. There was 3.85m DAI and 3.92m USDC in the Warp contracts. The attacker (seemingly) left with $1 million in ethereum (1,462 ETH).
He further explained that the attacker pumped millions through illiquid Uniswap pairs, which resulted in significant slippage on the flash swaps.
The DeFi industry is vulnerable to hack attacks, and Wrap Finance is not the first victim. FXStreet previously reported that Pickle Finance lost nearly $20 of users' funds in DAI tokens. The attacker found and exploited a vulnerability in a smart contract to drain the money. Since the start of the year, the industry lost over $100 million due to hack attacks.
Note: All information on this page is subject to change. The use of this website constitutes acceptance of our user agreement. Please read our privacy policy and legal disclaimer. Opinions expressed at FXstreet.com are those of the individual authors and do not necessarily represent the opinion of FXstreet.com or its management. Risk Disclosure: Trading foreign exchange on margin carries a high level of risk, and may not be suitable for all investors. The high degree of leverage can work against you as well as for you. Before deciding to invest in foreign exchange you should carefully consider your investment objectives, level of experience, and risk appetite. The possibility exists that you could sustain a loss of some or all of your initial investment and therefore you should not invest money that you cannot afford to lose. You should be aware of all the risks associated with foreign exchange trading, and seek advice from an independent financial advisor if you have any doubts.
Recommended Content
Editors’ Picks
Ripple's move above this key level could trigger nearly 50% rally for XRP
Ripple has overcome a critical resistance level and flipped into a support floor on the weekly time frame. This development happened while XRP tightly consolidated for roughly 250 days. Investors can expect XRP to kickstart a massive rally.
Optimism price outlook with nearly $90 million worth of OP tokens flooding markets on Friday
Optimism volatility has shrunk in the ours leading to the network’s cliff unlock. It joins the likes of dYdX and Sui, which have similar events on their calendars. As token unlocks are often considered bearish catalysts, investors should brace for a reaction after the event.
Top 3 Price Prediction Bitcoin, Ethereum, Ripple: Retail watches from the sidelines with a bias for shorts
Bitcoin could clear $73,777 peak as BTC bulls resurface. Ethereum might fall 10% before next leg up as ETH RSI teases with sell signal. XRP could lose $0.6000 threshold as Ripple bulls fail to show up.
Jito price could hit $6 as JTO coils up inside this bullish pattern
Jito price action shows a potential cup and handle formation. Based on theoretical measurement rules, a successful breakout could yield a 56% rally to $6.0. A breakdown of the $3.86 support level would create a lower low for JTO and invalidate the bullish thesis.
Bitcoin: BTC may have recovered, but is it out of the woods?
Bitcoin’s (BTC) upward momentum has shown a significant decline for the past two weeks or so. This development led to a bearish signal on the weekly and an uncertain outlook on the monthly.