Findings stemming from a recent report published by the security-focused blockchain firm Certik indicate that the Binance smart chain
Qubit’s Binance Smart Chain Ethereum Cross-Chain Bridge Attacked for $80 Million in Defi Tokens
A decentralized finance (defi) exploit tied to Qubit Finance’s Binance smart chain
Unfortunately looks like @QubitFin from the team at @PancakeBunnyFin has been exploited for over $80m in assets.
Exploiter’s address:https://t.co/s2WDCCiLho
— Stefan (🦎,🦎) (@0xCryptoStefan) January 27, 2022
The cross-chain bridge was exploited by the malicious attacker who managed to net 77,162 qXETH to borrow and convert the funds into other funds. Essentially, the hacker was able to leverage stolen coins to obtain “15,688 wETH ($37.6 million), 767 BTC-B ($28.5 million), approximately $9.5 million in various stablecoins, and ~$5 million in CAKE, BUNNY, and MDX.” Certik’s post-mortem analysis further explains:
Essentially what the attacker did is take advantage of a logical error in Qubit Finance’s code that allowed them to input malicious data and withdraw tokens on Binance Smart Chain when none were deposited on Ethereum.
Certik: ‘People Need to Bridge Crypto Assets in Ways That Are Not Susceptible to Hackers’
Currently, the address still holds all the stolen coins which are worth approximately $79,332,154 at the time of writing. Certik says that the cross-chain bridge vulnerability highlights two important things. “The importance of cross-chain bridges that facilitate interoperability between blockchains [and the] importance of the security of these bridges.” During the last 12 months, cross-chain bridge technology has grown a great deal.
Data stemming from Dune Analytics shows there’s $11.79 billion total value locked (TVL) on Friday. Polygon has the largest (MATIC
“As we move from an Ethereum-dominant world to a truly multi-chain world, bridges will only become more important,” Certik’s analysis of Qubit’s losses concludes. “People need to move funds from one blockchain to another, but they need to do so in ways that are not susceptible to hackers who can steal more than $80 million dollars.”
What do you think about Qubit’s $80 million cross-chain bridge loss? Let us know what you think about this subject in the comments section below.