Hackers Steal $200,000 Worth of EOS, dApp Had Smart Contract Flaw

Hackers Steal $200,000 Worth of EOS, dApp Had Smart Contract Flaw 1

A gambling application that is based on the EOS blockchain has had a flaw in its smart contract system exploited. Hackers were able to make off with $200,000 worth of EOS due to the vulnerability.EOSBet Taken Offline Following Security BreachThose behind today’s attack exploited a weakness in one of the EOSBet platform’s smart contracts. Following the incident, the service was taken offline whilst developers tried to pinpoint exactly how such an attack was possible.According to a report by TheNextWeb, an EOSBet spokesperson has stated:“[…] A few hours ago, we were attacked, and about 40,000 EOS was taken from our bankroll… This bug was not minor as was stated previously, and we are still doing forensics and piecing together what happened.”They added that the service should resume full functionality “relatively quickly” and that the incident was caused by a fault within the coding of one of their games. In addition, it appears that the hackers were able to target numerous games with the same code.It seems that those behind the attack were able to trick the EOSBet’s transfer funds function by using a fake hash. The discovery was first made public by a member of the EOSBet Reddit community. The post by user “thbourlove” showed the code used to exploit the vulnerability. This was responded to by the platform’s official Reddit account:“Yep, we were hacked. But we also have this exact assertion that you do. I would be careful, it’s a bit deeper than you think.”It seems that those responsible for the attack have attempted to make the transfers off the platform to the attacker’s wallet appear legitimate by creating an account that looks very similar to that of the official EOSBet wallet. They received small transactions from a number of accounts accompanied by the following message and other similar ones:“Memo: Please refund the illegal income eos, otherwise we will hire a team of lawyers in China to pursue all criminal liability and losses to you. Eosbet official eos account: eosbetdicell.”Taking a leaf out of the Twitter-bot scammers’ playbook of spreading ill gotten gains thinly across many wallets, the fake account then sent out many small amounts of EOS tokens to several accounts with this message:“Memo: Dear players: In order to make up for the loss of eosbet players in the hacking incident, the platform launched a recharge to send BET. 1EOS=1BET, the official eos account: eosbetdicell, the transfer will automatically give the same BET.”Presumably, the hope is that the disbursement is meant to resemble an official refund for players impacted by the breach.Although the figures involved are much smaller, the incident is all too reminiscent of the DAO hack on the Ethereum network. There, a smart contract vulnerability was exploited allowing attackers to make off with millions of dollars of investors ETH tokens. It was the response the this that caused the fork that created Ethereum Classic. Clearly, far greater care needs be taken by developers hoping to use smart contracts in their dApps.

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews



bitcoin
Bitcoin (BTC) $ 61,882.00
ethereum
Ethereum (ETH) $ 3,884.63
binance-coin
Binance Coin (BNB) $ 475.90
cardano
Cardano (ADA) $ 2.23
tether
Tether (USDT) $ 1.00
xrp
XRP (XRP) $ 1.15
solana
Solana (SOL) $ 162.52
polkadot
Polkadot (DOT) $ 43.59
usd-coin
USD Coin (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.235235
USD
EUR
GBP
bitcoinBitcoin (BTC)
$ 61,882.00
ethereumEthereum (ETH)
$ 3,884.63
tetherTether (USDT)
$ 1.00
bitcoin-cashBitcoin Cash (BCH)
$ 628.77
litecoinLitecoin (LTC)
$ 190.06
bitcoinBitcoin (BTC)
53.296,80
ethereumEthereum (ETH)
3.345,70
tetherTether (USDT)
0,861265
bitcoin-cashBitcoin Cash (BCH)
541,54
litecoinLitecoin (LTC)
163,69
bitcoinBitcoin (BTC)
45,174.17
ethereumEthereum (ETH)
2,835.80
tetherTether (USDT)
0.730005
bitcoin-cashBitcoin Cash (BCH)
459.01
litecoinLitecoin (LTC)
138.74

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021
Cryptocurrency Exchanges
Cryptocurrency Exchanges and the Plague of Scams and Bans
June 29, 2021
What Role Do Cryptocurrencies Play In The Era Of Ransomware Attacks?
June 9, 2021

Blockchain/Cryptocurrency Questions and Answers

ICo Presale
The Science Behind ICO Presales…
October 14, 2021
Beginner’s Guide to Investing in Cryptocurrency
August 9, 2021
Short-Sell Cryptocurrency
How to Short-Sell Cryptocurrency: A Brief Overview
July 17, 2021
Klaytn
What Is Klaytn (KLAY) And How Does It Work?
July 16, 2021
Cryptocurrencies
Our Crypto Roundup Interview Asks- Do Cryptocurrencies Have a Future?
July 15, 2021


CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin61,660 0.09 % 7.61 % 14.16 %
Ethereum3,871.9 0.06 % 2.36 % 8.80 %
Binance Coin476.45 0.20 % 1.18 % 13.90 %
Cardano2.230 0.52 % 3.13 % 0.06 %
Tether0.9986 0.03 % 0.08 % 0.23 %
XRP1.140 0.03 % 1.50 % 7.76 %
Solana161.41 0.19 % 8.59 % 1.57 %
Polkadot30.87 2.19 % 17.29 % 10.73 %
USD Coin1.000 0.14 % 0.20 % 0.17 %
Dogecoin0.2425 2.91 % 4.55 % 0.18 %

bitcoin
Bitcoin (BTC) $ 61,882.00
ethereum
Ethereum (ETH) $ 3,884.63
binance-coin
Binance Coin (BNB) $ 475.90
cardano
Cardano (ADA) $ 2.23
tether
Tether (USDT) $ 1.00
xrp
XRP (XRP) $ 1.15
solana
Solana (SOL) $ 162.52
polkadot
Polkadot (DOT) $ 43.59
usd-coin
USD Coin (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.235235