Home >web3.0 >Web3 Gaming Blockchain Ronin Network Was Attacked by Actors Who Took a Total of $12 Million in Ether ($ETH) and USD Coin ($USDC) Tokens

Web3 Gaming Blockchain Ronin Network Was Attacked by Actors Who Took a Total of $12 Million in Ether ($ETH) and USD Coin ($USDC) Tokens

王林
王林Original
2024-08-07 18:13:371038browse

Ronin announces exploit Ronin revealed that 4,000 $ETH and two million $USDC tokens were withdrawn from the Ronin bridge Tuesday.

Web3 Gaming Blockchain Ronin Network Was Attacked by Actors Who Took a Total of  Million in Ether ($ETH) and USD Coin ($USDC) Tokens

Web3 gaming blockchain Ronin Network was attacked by actors who pilfered a total of $12 million in Ether ($ETH) and USD Coin ($USDC) tokens due to an issue with the Ronin bridge, and while the stolen funds have been returned by the "white hats," some crypto users' questions remain unanswered.

Announcing the exploit on Tuesday, Ronin said 4,000 $ETH and two million $USDC tokens were withdrawn from the Ronin bridge. "Today's bridge upgrade, after being deployed through the governance process, introduced an issue leading the bridge to misinterpret the required bridge operators vote threshold to withdraw funds," the Ethereum Virtual Machine (EVM) compatible network said of the exploit.

"Earlier today, we were notified by white-hats about a potential exploit on the Ronin bridge," the network said, adding that after verifying the reports, the bridge was paused approximately 40 minutes after the first on-chain action was spotted.

"The actors withdrew ~4K ETH and 2M USDC, valued at ~$12M, which were quickly spotted by our team and white-hats and moved into a safe place. We are currently negotiating with the actors, who appear to be acting as white-hats and have responded in good faith," it said, adding that all user funds are safe and should there be any shortfalls, the funds will be re-deposited into the bridge once it is back in operation.

A few hours after the exploit announcement, Ronin said the entire $12 million in pilfered funds had been returned by the actors. "We thank the white hats for their vigilance and integrity. The Bug Bounty Program will reward the white hats with a 500 K bounty," it said.

"Update: The ETH (~$10 M) has been returned and we expect that the USDC will be returned later today. We thank the white hats for their vigilance and integrity. The Bug Bounty Program will reward the white hats with a 500 K bounty. The bridge will undergo an audit before it is…"On further steps to prevent another exploit, Ronin said the bridge will undergo an audit before reopening and the bridge will be shifted away from the network's current structure.

Crypto users raise issue about white hatsDespite the security incident's resolution and the return of all withdrawn funds, some cryptocurrency users questioned the supposed white hat process. "How are they whitehats if you have to negotiate?" one user asked, adding that white hat hackers should only have informed Ronin about the breach "without stealing" tokens.

"How are they whitehats if you have to negotiate? Whitehats would have informed you about the exploit without stealing it in the first place. Honestly."As other users joined in on the debate, the user went on to reiterate his stance that the group that returned the funds were "greyhats at best" since white hats wouldn't be in the "negotiation" table unless they were hired to do so. "There has been massive reputational damage caused by acting this way and any 'negotiation' is holding the project hostage," he insisted.

Another user argued that it took the white hats "too long" to return the funds if they truly were white hat hackers, as Ronin said.

"White hack? Are you sure guys? He took too long to return the funds. Anyway the criticality in your Smart Contract was detected by @TheArkhivist Team one hour before it happened.https://t.co/t3myBRrWhs"Several other users floated the theory of a "self hack," something the crypto industry has seen in some exploits over the years.

"SelfHack

Insiders getting a free milli.

Damn..web3

Smells somtthing fishy"Aside from the notion that it could have been an "insider" job, many users pointed out that it wasn't the first time the Ronin network was hacked. One user asked how many more times the blockchain should be exploited before the team learns. The Ronin bridge was hacked in March 2022, as per auditing firm QuillAudits. At the time, the blockchain lost a whopping $600 million.

"Urgent Security Alert: Ronin Bridge Exploit ? Frens, @Ronin_Network has been hit by another serious breach, marking the third major exploit in its history.

At 09:37:23 AM UTC, the Axie Infinity: Ronin Bridge V2 transferred 3,996 ETH to the MEV Bot, which then transferred 4.00… pic.twitter.com/RvrV2dG081"

The above is the detailed content of Web3 Gaming Blockchain Ronin Network Was Attacked by Actors Who Took a Total of $12 Million in Ether ($ETH) and USD Coin ($USDC) Tokens. For more information, please follow other related articles on the PHP Chinese website!

Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn