DeFi stands for decentralized finance which often are loans or other types of financial products that moved to blockchain. Some time ago i wrote about some very smart way to exploit one contract when they stole some ETH and tokens. Yet this time case is bigger - 25 million USD.

Lending protocol Lendf.me which uses dForce network of protocols ecosystem.

链闻消息，DeFi 贷款协议 Lendf.Me 证实在北京时间 8 点 45 分、区块高度：9899681 遭受攻击，目前技术团队已经定位问题，并在网页端建议所有用户停止往借贷协议存入资产。DeFi Pulse 的数据显示，锁仓资产在几个小时内跌落 57%。目前平台上多个资金的利用率已经高达 99%，imBTC 的资金利用率则为 100%。链上数据显示，攻击者已将资产转入 Compound 和 Aave 这两个平台。慢雾安全团队分析发现与昨日攻击 Uniswap 手法类似，极有可能是同一伙人所为。Lendf.Me 是由 dForce 主导开发的去中心化借贷市场协议。1 天前，一名攻击者通过 ERC-777 在 Uniswap 流动性池合约的重入漏洞，对 ETH-imBTC 池循环套利，造成流动池提供者损失。去中心化交易平台 Tokenlon 宣布暂停 imBTC 合约的转账功能。 imBTC 是一个 1:1 锚定比特币的 ERC-20 代币。

Lendf.Me confirmed that it was attacked at 8:45 GMT and block height: 9989681. At present, the technical team has located the problem and advised all users to stop depositing assets in the loan agreement on the web page. Data from DeFi Pulse shows that hedging assets fell 57% within a few hours. At present, the utilization rate of multiple funds on the platform has reached 99%, and the utilization rate of imBTC's funds is 100%. The data on the chain shows that the attacker has transferred the assets to the Compound and Aave platforms. The analysis of the SlowMist security team found that it was similar to the attack on Uniswap yesterday, and it was most likely caused by the same group of people.

From what i read Compound (another huge defi platform) CEO Robert Leshner claimed that the attacker got the total.

It seems they did a fork of version1 of Compound that had some holes and got exploited.

So far ETH price didnt dump or so.

REAL WAYS TO MAKE PASSIVE INCOME FROM CRYPTOCURRENCY - DOWNLOAD FREE EBOOK NOW

Join My Official Discord Crypto/Steemit Group - https://discord.gg/Ma3VCxj

Follow, Resteem and VOTE UP @kingscrown creator of Bitcoin Ethereum Loans Online with unique newsletter and hidden tips for subscribers!