2.5 亿美元就此消失。这一切都源自于一个管理员金钥拥有对整个协定的绝对控制权。 Drift 漏洞提醒我们,攻击面并不仅限于 Solidity 程式码。被攻破的签署者可以重写风险规则、伪造预言机并停用熔断器,所有这些都可以在一次交易中完成。 审计密钥。审计治理。审计整个攻击面。 #Drift
本文为机器翻译
展示原文
Drift
@DriftProtocol
Earlier today, a malicious actor gained unauthorized access to Drift Protocol through a novel attack involving durable nonces, resulting in a rapid takeover of Drift’s Security Council administrative powers.
This was a highly sophisticated operation that appears to have involved
来自推特
免责声明:以上内容仅为作者观点,不代表Followin的任何立场,不构成与Followin相关的任何投资建议。
喜欢
收藏
评论
分享
