A Decentralized Finance (DeFi) platform that claimed to be the “safest” on the market, LendHubconfirmed that it was hacked last thursday (12), losing more than 30 million reais during the invasion. After confirmation, those responsible for the company stated that they are already talking to other platforms to track and block stolen resources. The company limited itself to informing that it lost 6 million dollars.
“Dear Lendhub User, On January 12th, hackers stole around 6 million USD worth of assets from Lendhub. The team reached out to several traditional exchanges to trace the incident.”
Dear Lendhub user On January 12, hackers stole about 6 million US dollars of assets from Lendhub. The Lendhub team has contacted the SlowMist security team and several mainstream exchanges to track the incident.
1/3 — LendHub (@LendHubDefi) January 13, 2023
Confirmation last Friday (13) agitated customers, who are waiting for news.
Address of hacker who invaded DeFi and cryptocurrency platform monitored
The problem about the new hacking incident against a decentralized cryptocurrency platform is still unknown by the technical team, who despite seeing drained balances, did not disclose the cause of the problem. Despite this, the hacker’s address on the platform is already blocked and investigations continue to take place.
“We are currently investigating the cause of the incident. We have already blocked the address of the hacker attack and are tracking the whereabouts of the funds.”
With blockchain tracking tools, the team is waiting for help trying to recover their assets. In a note, he made it clear that he should keep his customers informed in the coming days.
“We will do an in-depth analysis of the cause of the incident, the hacker’s address and the whereabouts of the funds, and we will do our best to trace the stolen assets and recover all losses. We will keep community users updated with all progress and developments as they happen.”
Investigators believe old token caused problems, 1,100 Ethers already passed through mixers
Collaborating with the investigations into the hacker incident on the LendHub platform, the company SlowMist identified where hackers may have gained an advantage. According to experts, an old platform token, which was not properly disabled, allowed criminals to borrow using a new token, while issuing new coins on the old contract. The vulnerability, already contained to prevent further attacks, dealt with the elimination of the old token, now out of business. Even so, at least 1,100 Ethers stolen from DeFi have already passed through Tornado Cash’s mixers. Even though the service has been on the US sanctions list since 2022, hackers continue to use its services after thefts.
“The hacker’s main address is 0x9d01..ab03 and the initial funding source of 100 ETH came from TornadoCash. The hacker has already transferred a total of 1,100 ETH to TornadoCash in 11 transactions.”
The hacker’s main address is 0x9d01..ab03 and the source of initial funding of 100 #ETH came from @TornadoCash. The hacker has now transferred a total of 1,100 ETH to TornadoCash in 11 transactions. pic.twitter.com/XO9biFcDZN
— SlowMist (@SlowMist_Team) January 13, 2023
In early 2023, the unfortunate incident is one of the first records against platforms, mainly working with decentralized protocols in DeFi.