Cos(余弦)😶‍🌫️'s Insight

This article is machine translated

Show original

This incident again involves the exploitation of the durable nonce offline pre-signature mechanism. This phishing technique has been popular for at least two years. After obtaining this signature, attackers can initiate on-chain operations with "legitimate signatures" when the time is right, such as taking over the on-chain admin privileges of Drift in this scenario. This time, it appears to be the work of a professional hacking group (at least in terms of their actions, they were well-prepared and their methods were sophisticated).

Drift

@DriftProtocol

Earlier today, a malicious actor gained unauthorized access to Drift Protocol through a novel attack involving durable nonces, resulting in a rapid takeover of Drift’s Security Council administrative powers. This was a highly sophisticated operation that appears to have involved

Sector:

Jump Crypto

Decentralized Exchange (DEX) Token

Governance

From Twitter

Disclaimer: The content above is only the author's opinion which does not represent any position of Followin, and is not intended as, and shall not be understood or construed as, investment advice from Followin.

Add to Favorites

Comments

Relevant content

BeInCrypto Việt Nam

Stablecoins have moved more money than the core US financial system.

ACH

2.99%

BeInCrypto Việt Nam

Three US stocks were heavily impacted by Trump's speech on Iran this week.

LEO

0.04%

BeInCrypto Việt Nam

XRP liquidation drops on Binance – How will the price react?

RLUSD

0.02%