DeFi Force Project Lost $ 376,000 Crypto Assets Due to Smart Contract Vulnerability

The developers of the hedge fund DeFi Force announced an attack on the project, organized by five attackers, one of whom returned the stolen money. The rest of the hackers withdrew FORCE tokens for $ 376,000.

According to a statement of the Decentralized Finance (DeFi) Force project on Twitter, the development team discovered the vulnerability of the xFORCE contract and identified the cause of the problem on the morning of April 4th. All other repositories of the project are safe. The price of Force DAO’s own crypto-asset (FORCE), according to CoinGecko, fell sharply by more than 80% in a day.

According to several records on Twitter, Mudit Gupta, the head of the Polymath development team, was attacked by five attackers. One of them, according to Gupta, was a “white hacker” and returned the stolen money. The rest disappeared with FORCE tokens worth about $ 376,000.

“This is a common mistake in the Solidity world. Almost certainly no security expert reviewed these contracts. Force DAO was lucky the hacker got the money back. Please do not launch your products without an audit or at least peer review. ” wrote Gupta.

According to him, “Hacker 2” withdrew 4.1 million FORCE and exchanged them for 80 ETH through 1inch, and “Hacker 3” withdrew $ 1.25 million FORCE and partially sold them for about 8 ETH. Hacker 4 stole about 300,000 FORCE and sold most of them on DEX for 50 ETH, and Hacker 5 withdrew about 1.1 million FORCE and sold part of the tokens for 45 ETH.

DeFi projects often fall prey to attackers. Last month, Furucombo, a service that allows you to create and merge transactions across various DeFi protocols, came under attack. Attackers withdrew ETH and various tokens worth more than $ 14 million.

Telegram channel!