DEX a zkSync Era-n, feltörve 1.82 millió dollárért közvetlenül a kódvizsgálat után

• Merlin, a new DEX on zkSync Era, lost $1.82 due to a bug in its smart contracts or private key mismanagement.
• Just two days ago, Merlin passed CertiK’s code audit.
• Some evidence points to an inside job by Merlin’s anonymous developers.

2023 has been one of the worst years for decentralized exchanges in terms of hacking incidents. Multiple DeFi projects on various blockchains have been exploited for millions of dollars.

And the trend is continuing. On Wednesday, a decentralizált csere on zkSync Era got hacked for $1.82 million.

DEX on zkSync Hacked for $1.82 Million

Merlin, a new decentralized exchange on Ethereum 2. réteg zkSync Era, experienced a costly exploit on Wednesday. The exchange 1.82 millió dollárért feltörték.

The hack is especially interesting because of suspicious timing. Merlin received a code audit on Monday from Bizonyítvány, one of the most reputable smart contract auditors.

In the audit, CertiK said it found no potential bugs that may lead to exploits. However, the firm did mention in the audit that there are certain centralization risks related to how Merlin is managing its private keys.

Reacting to the incident, CertiK said that the exploit is most likely related to a potential “private key management issue” rather than an “exploit as the root-cause.”

“While audits cannot prevent private key issues, we always highlight best practices to projects. Should any foul play be discovered, we will work with the appropriate authorities and share relevant info. Stay tuned for updates.”

Merlin itself has only acknowledged the incident and asked to “revoke connected site access on your wallets/sign permission” but hasn’t yet offered any more details.

And it’s possible that it won’t. Some users are pointing out that the Merlin hack was likely carried out by Merlin insiders due to a bug left out intentionally in the intelligens szerződések.

On top of that, Merlin had just begun publicly selling its token, MAGE. Some users have also pointed out that the developers behind Merlin are anonymous.

Másik oldalán

• It’s possible that the hack happened because of honest mismanagement of private keys. However, this is still to be seen as no new information is currently available.

Miért kell Care?

Users who want to use decentralized exchanges, especially those just launched, should be extra careful. 

Read more about a recent KuCoin Twitter hack:

Hogyan maradhat biztonságban a KuCoin Twitter feltörése után

Read more about Visa’s plans with crypto:

A Visa szoftvermérnököket alkalmaz az „ambiciózus” kriptográfiai termékek ütemtervéhez

• SEO által támogatott tartalom és PR terjesztés. Erősödjön még ma.
• PlatoAiStream. Web3 adatintelligencia. Felerősített tudás. Hozzáférés itt.
• A jövő pénzverése – Adryenn Ashley. Hozzáférés itt.
• Forrás: https://dailycoin.com/dex-on-zksync-era-hacked-after-code-audit/