Cosine: Bybit attackers use three owners to sign a transaction that replaces the Safe implementation contract with a malicious contract

PANews|Feb 21, 2025 16:50

SlowMist Cosine has revealed some details of Bybit Safe's multi signature being hacked on the X platform: Malicious implementation contract deployed at UTC 2022-02-19 7:15:23 0xbDd077f651EBe7f7b3cE16fe5F2b025BE2969516 The attacker used three owners to sign a transaction 0x46deef0f52e3a983b67abf4714448a41dd7fffd6d32d32da69d62081c68ad7882 at UTC 2025-02-21 14:13:35, replacing the Safe implementation contract with a malicious contract Malicious upgrade logic embedded in STORAGE [0x0] 0x96221423681A6d52E184D440a8eFCEbB105C7242 through DELEGATECALL Subsequently, the attacker used backdoor functions sweetETH and sweetERC20 in the malicious contract to extract assets from the hot wallet.

+5

Mentioned

|

APP

Windows

Mac

Share To

X

Telegram

Facebook

Reddit

CopyLink

|

Share To

Timeline

Feb 22, 16:19【Deploying Ethereum branch EBV requires $140 million in seed funding】

Feb 22, 11:26【Reverse situation occurred during NFT deployment process】

Feb 21, 16:54【SlowMist releases Bybit attacker operation details】

Feb 21, 16:52【SlowMist reveals details of Bybit hacker's crime】

Feb 21, 16:48【Details of Bybit Safe's multi signature being hacked】

Feb 21, 07:26【Ethereum Consensus Layer Core Developers Meeting to Discuss Upgrades】

Feb 21, 05:29【DeepSeek will open source 5 code repositories next week】

Feb 19, 21:38【Chainlink's new chain integration speed will significantly increase by 2025】

Feb 19, 05:09【Google will allow users to access Bitcoin wallets through Google accounts】

Feb 19, 03:11【Vision of game structure driven by smart contracts】

HotFlash

|

APP

Windows

Mac

Share To

X

Telegram

Facebook

Reddit

CopyLink

APP

Windows

Mac

X

Telegram

Facebook

Reddit

CopyLink

Hot Reads