Belt Finance attack event analysis

BTC0.0₂₀

ETH0.0₂₀

HTX0.0₂₀

SOL0.0₂₀

BNB0.0₂₀

BTC0.0₂₀

ETH0.0₂₀

HTX0.0₂₀

SOL0.0₂₀

BNB0.0₂₀

Belt Finance attack event analysis

创宇区块链安全实验室

2021-05-31 09:55

本文约543字，阅读全文需要约2分钟

Recently, there have been frequent attacks on the BSC chain, and contract security needs to be paid more and more attention.

foreword

According to the official tweet, on May 30, the Belt Finance project on the BSC chain was attacked by a flash loan. Knowing that Chuangyu Blockchain Security Lab tracked and analyzed the incident for the first time.

analyze

analyze

Attack contract:

0x4eB362934D56f2669a712Cb92d316cd465921B5D

Attack contract:

attack process

Attack tx:

attack process

1. The attacker first lends 8 flash loans from PancakeSwap, totaling 385M BUSD

2. Among them, 10M BUSD is transferred to the bEllipsisBUSD strategy, and 187M BUSD is transferred to the bVenusBUSD strategy

3. Exchange 190M BUSD to 169M USDT in Ellipsis

4. Withdraw BUSD in the bVenusBUSD strategy

5. Convert 169M USDT to 189M BUSD in Ellipsis

8. Return the flash loan, and convert the assets obtained in the attack into ETH in batches through the Nerve (Anyswap) cross-chain bridge

Summarize

secondary title

Summarize

Safety

创宇区块链安全实验室

作者文库

11 hours ago

BOB Announces Joining Chainlink’s Scale Initiative, Driving BTCFi’s Adoption of Chainlink Data Standards

硬件钱包大猎杀：盲区之外，从购买到激活的全流程安全手册

12 hours ago

黄金屋里见通途：从黄金代币化到全品类RWA的发行新境

12 hours ago

Understanding the Key Points of ETH Treasury Operations: Not Holding, But Staking

11 hours ago

Is the rise of Bitcoin treasury companies the inevitable path to surpassing the US dollar?

14 hours ago

Pantera founder reveals the legendary Bitcoin price drop of $65

12 hours ago