Foresight News reports that the SlowMist security team has released a security incident analysis report on Truebit Protocol. On January 8th, Truebit Protocol was attacked due to an integer overflow vulnerability in its Purchase contract. Attackers were able to mint TRU tokens at near-zero cost and steal 8,535 Ethereum (approximately $26.44 million). The root cause was the lack of overflow protection mechanisms in the contract, leading to incorrect price calculations. The stolen funds were subsequently transferred to Tornado Cash. It is recommended that contracts compiled using versions of Solidity prior to 0.8.0 always use SafeMath to protect all arithmetic operations to prevent overflow-related logical flaws.
SlowMist: The security incident at Truebit was caused by the lack of overflow protection mechanisms in the contract.
This article is machine translated
Show original
Source
Disclaimer: The content above is only the author's opinion which does not represent any position of Followin, and is not intended as, and shall not be understood or construed as, investment advice from Followin.
Like
Add to Favorites
Comments
Share
Relevant content
