WebsCrypto
  • News
  • Prices
  • Bitcoin
  • Ethereum
  • Altcoins
  • NFTs
  • Business
  • Markets
  • Blockchain
  • DeFi
  • Policy
  • Opinions
  • Guides
  • PR
Facebook Twitter LinkedIn Telegram
WebsCryptoWebsCrypto
  • News
  • Prices
  • Bitcoin
  • Ethereum
  • Altcoins
  • NFTs
  • Business
  • Markets
  • Blockchain
  • DeFi
  • Policy
  • Opinions
  • Guides
  • PR
WebsCrypto
Business

FriesDAO Hacked Due to Profanity Vulnerability, Loses Around $2.3 Million

By Simon LawsonOctober 28, 20222 Mins Read
FriesDAO Hacked Due to Profanity Vulnerability, Loses Around $2.3 Million
Share
Facebook Twitter Telegram LinkedIn Reddit Email

FriesDAO was attacked today and lost approximately $2.3 million after attackers gained control of the protocol operator’s wallet. It appears to be due to a bug in the Profanity wallet generator that forced the use of private keys for addresses generated through the tool.

  1. After gaining access to the operator’s wallet, the attacker withdraws $FRIES from the DAO’s funding wallet and sells it on Uniswap for wETH.
  2. The attacker withdraws funds from the staking pool using the function governmentRecoverUnsupported() which can only be called by the operator address.
  3. The attacker eventually converts all funds into DAI. As of this writing, the wallet storing the stolen funds is worth about $2.325 million. FriesDAO confirmed the attack in the official Discord channel, stating that the wallet address was indeed generated with Profanity.

The official developers are currently trying to negotiate with the attackers to negotiate a white hat bounty in exchange for the return of the stolen funds. The attack could have been prevented because the Profanity vulnerability, which was responsible for more than $160 million in the theft of market maker Wintermute, has been public for more than a month. CertiK calls on all Web 3.0 projects that have used Profanity tools to immediately transfer control of all assets in affected wallets to securely generated addresses.

DISCLAIMER: The information provided by WebsCrypto does not represent any investment suggestion. The articles published on this site only represent personal opinions and have nothing to do with the official position of WebsCrypto.
Crypto DAO Exchange

Related News

Bitfinex Alpha Report Highlights Increased Volatility in Crypto Options Market Amid U.S. Policymakers Confused About Economic Conditions

Optimism Prepares for Biggest Upgrade in Bedrock History

EU Officially Enacts MiCA Regulation as Law

World Economic Forum Issues Recommendations to Governments and Industry on Cryptocurrency Regulation

CME Group Extends Expirations of Ethereum and Bitcoin Futures and Options Contracts

Stably Launches StablyUSD, a USD Stablecoin on the Bitcoin Network

The Latest
News June 1, 2023Updated:June 1, 2023
Hackers Leaked LSD Protocol Unsheth Contract Deployment Private Key, Suspended Withdrawals and Contacted Hackers
Markets June 1, 2023
Bitfinex Alpha Report Highlights Increased Volatility in Crypto Options Market Amid U.S. Policymakers Confused About Economic Conditions
Business June 1, 2023
Optimism Prepares for Biggest Upgrade in Bedrock History
News June 1, 2023Updated:June 1, 2023
EU Officially Enacts MiCA Regulation as Law
News May 30, 2023Updated:May 30, 2023
World Economic Forum Issues Recommendations to Governments and Industry on Cryptocurrency Regulation

WebsCrypto contains crypto news about cryptocurrencies, bitcoin, ethereum, altcoins and more.

Facebook Twitter LinkedIn Telegram RSS
Categories
  • News
  • Markets
  • Business
  • Markets
  • Opinions
  • Guides
  • Press Release
  • Sponsored
Tags
  • Bitcoin
  • Ethereum
  • Altcoins
  • NFTs
  • Blockchain
  • DeFi
  • Regulation
  • Policy
About
  • About Us
  • Contact Us
  • Advertise
  • Crypto Prices
  • Privacy Policy
  • Terms of Service
© 2023 WebsCrypto.

Type above and press Enter to search. Press Esc to cancel.