Omnichain money market Radiant Capital 
RDNT -7.17% seems to be undergoing an exploit, according to onchain evidence and Web3 security Ancilia. It appears the attack began Wednesday afternoon on Radiant’s 
BNB +0.32% Chain instance and then moved onto Ethereum 
ETH +1.11% Layer 2 Arbitrum 
ARB -0.90% .
“We have noticed several transferFrom user's account through the contract 0xd50cf00b6e600dd036ba8ef475677d816d6c4281. Please revoke your approval ASAP. It seems like the new implementation had vulnerability functions,” Ancilia wrote on X.
A transferFrom exploit uses a smart contract’s transferFrom function to enable one account to send a specified number of tokens from a target account to a third account. It generally requires the victim’s account to grant permission to interact with a spoofed wallet address.
Ancilia is warning Radiant users to revoke all Radiant contract addresses as a safety measure.
According to the security experts, a backdoor contract was deployed at approximately 17:09 UTC on Wednesday, enabling the unknown attacker to gain unauthorized access and begin transferring tokens.
Security firm Fuzzland told The Block that the attack profile suggests that someone was either phished or a computer compromise led to Radiant's private keys leaking.
The attacker transferred wrapped versions of BNB, ETH, USDC and USDT tokens, among others, from a Radiant-controlled wallet to a single address beginning 0x0629b. That wallet currently has a BNB balance of over $5 million worth of tokens. That same wallet’s account on DeBank shows a $51 million balance, with a 2,619,512.54% increase in token holdings since it was created, indicating the attack could be far more widespread.
The attacker’s address holds over $32 million worth of Arbitrum-based assets and around $18 million worth of tokens on BNB Chain. Its largest holdings are ETH derivatives wstETH and weETH.
Earlier this year, Radiant Capital lost around 1900 ETH, worth $4.5 million, in a flash loan attack.
This is a developing story and will be updated.
Disclaimer: The Block is an independent media outlet that delivers news, research, and data. As of November 2023, Foresight Ventures is a majority investor of The Block. Foresight Ventures invests in other companies in the crypto space. Crypto exchange Bitget is an anchor LP for Foresight Ventures. The Block continues to operate independently to deliver objective, impactful, and timely information about the crypto industry. Here are our current financial disclosures.
© 2024 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.
免责声明:本文章仅代表作者个人观点,不代表本平台的立场和观点。本文章仅供信息分享,不构成对任何人的任何投资建议。用户与作者之间的任何争议,与本平台无关。如网页中刊载的文章或图片涉及侵权,请提供相关的权利证明和身份证明发送邮件到support@aicoin.com,本平台相关工作人员将会进行核查。
