Security

Outdated Yearn Finance Contract Hacked, $11.6 Million Stolen in Stablecoins

On Thursday, a hacker exploited an outdated contract from Yearn Finance, a decentralized finance (DeFi) platform, and stole $11.6 million worth of stablecoins. The attacker managed to create a quadrillion yUSDT stablecoins by exploiting a vulnerability in the code of an old Yearn Finance contract. The tokens were then swapped for various other stablecoins, including USDP, TUSD, BUSD, USDT, USDC, and DAI.

DeFi platforms have been particularly vulnerable to hacking attacks, and Yearn Finance is just one of the many platforms that have suffered such attacks. The hacker in this case managed to take advantage of an outdated contract, highlighting the importance of regularly updating and auditing smart contracts to prevent such incidents.

As reported by PeckShield , after the successful theft, the hacker transferred the funds to other DeFi platforms, such as Aave, where they locked 1.5 million TUSD as collateral to borrow 634 Ether worth $1.26 million. The hacker also sent at least 1,000 Ether to Tornado Cash, a mixing service that is sanctioned by the U.S. Treasury. Tornado Cash is a tool that allows users to anonymize their Ethereum transactions, making it difficult for authorities to track the flow of funds.

Image credit PeckShield Inc.

The theft is just one of the many incidents of crypto theft that occurred in 2022, with blockchain forensics firm Chainalysis reporting that hackers stole at least $3.8 billion in cryptocurrencies throughout the year, the highest recorded total. DeFi platforms suffered more than 82% of the losses, highlighting the need for improved security measures in the DeFi space.

This incident is a stark reminder that the DeFi space is not immune to cyberattacks and that there is a need for continued innovation in security measures to safeguard users’ funds. The rise of DeFi has brought about exciting new opportunities in finance, but it has also created new risks that need to be addressed. Regular security audits, code reviews, and bug bounties are just some of the measures that DeFi platforms can implement to improve their security posture.

Lorna Udinese

Full time technology researcher. Lorna been involved with the world of cryptocurrency since 2012 when he first invested in Bitcoin. If you have any questions or comments please feel free to contact her at lorna@thecoinspost.com

Recent Posts

French Police Arrest Crypto Kidnappers After Finger Cutting

Paris, France – French police arrested several suspects this week tied to disturbing May… Read More

3 weeks ago

PayPal USD Plans to Use Stellar for New Use Cases

PayPal just announced big plans for its stablecoin. The company wants to bring PayPal USD… Read More

3 weeks ago

Binance Delists Four Major Cryptocurrencies: What You Need to Know

Binance, the world's largest cryptocurrency exchange has announced its plans to delist and pause trading… Read More

1 year ago

LocalMonero Announces 6-Month Shutdown Plan

LocalMonero, the peer-to-peer exchange platform for the privacy-focused cryptocurrency Monero (XMR), will be shutting down… Read More

1 year ago

Telecom Giant Vodafone Bringing Crypto to the Masses Via SIM Cards

The major telecom company Vodafone has unveiled an ambitious plan to integrate cryptocurrency wallets directly… Read More

1 year ago

No Evidence of Hack, Says Bitfinex CTO Amid Ransomware Gang’s Allegations

In the world of cybersecurity, claims of data breaches can cause significant concern and speculation.… Read More

1 year ago