Bitget App
Trade smarter
Buy cryptoMarketsTradeFuturesCopyBotsEarn
Radiant Capital published a post reviewing the theft process, stating that it will identify the attacker as soon as possible and recover the stolen f

Radiant Capital published a post reviewing the theft process, stating that it will identify the attacker as soon as possible and recover the stolen f

CointimeCointime2024/10/18 04:36
By:Cointime

Radiant Capital officials posted on social media to review a highly complex security vulnerability experienced by the protocol on the 16th, resulting in a loss of $50 million. Attackers injected and exploited multiple developers' hardware wallets with highly advanced malware.During the intrusion, the front-end of Safe Wallet (also known as Gnosis Safe) displayed legitimate transaction data, while the poisoned transactions were signed and executed in the background. This vulnerability occurred during a routine multi-signature emission adjustment process, which is periodically conducted to adapt to market conditions and utilization. DAO contributors strictly adhered to many industry-standard operating procedures throughout the entire process. Each transaction was simulated on Tenderly to ensure accuracy and independently reviewed by multiple developers at each signature stage. During these reviews, no abnormalities were detected by the front-end checks in Tenderly and Safe. To emphasize the importance of this point, external security teams have confirmed that this compromise was completely undetectable during the manual review of Gnosis Safe UI and regular transaction Tenderly simulation stages.Radiant Capital stated that it has been working closely with Seal911 and Hypernative and has implemented more robust multi-signature controls. The FBI and zeroShadow are fully aware of the violations and are actively working to freeze all stolen assets. The DAO is deeply affected by this attack and will continue to work tirelessly with relevant agencies to identify the attackers and recover stolen funds as soon as possible.

0

Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.

PoolX: Locked for new tokens.
APR up to 10%. Always on, always get airdrop.
Lock now!

You may also like

Announcement of Bitget spot bot on adding 2 new trading pairs

We are pleased to announce that Bitget spot bot has now added: KOMA/USDT, AIXBT/USDT. Reference 1. Spot grid 2. Crash course on Spot Grid Disclaimer Despite high growth potential, cryptocurrencies still face high risks and volatility. You are strongly advised to do your own research as you invest a

Bitget Announcement2024/12/23 08:19