Miyawis
2021-08-12
A
How hackers stole $600 mln in crypto tokens from Poly Network
免责声明:上述内容仅代表发帖人个人观点,不构成本平台的任何投资建议。
分享至
微信
复制链接
精彩评论
我们需要你的真知灼见来填补这片空白
打开APP,发表看法
APP内打开
发表看法
8
{"i18n":{"language":"zh_CN"},"detailType":1,"isChannel":false,"data":{"magic":2,"id":894997093,"tweetId":"894997093","gmtCreate":1628781072112,"gmtModify":1631883824922,"author":{"id":3575836659947825,"idStr":"3575836659947825","authorId":3575836659947825,"authorIdStr":"3575836659947825","name":"Miyawis","avatar":"https://static.tigerbbs.com/9ec9407184d848b74d21014bda288eae","vip":1,"userType":1,"introduction":"","boolIsFan":false,"boolIsHead":false,"crmLevel":4,"crmLevelSwitch":0,"individualDisplayBadges":[],"fanSize":9,"starInvestorFlag":false},"themes":[],"images":[],"coverImages":[],"extraTitle":"","html":"<html><head></head><body><p>A</p></body></html>","htmlText":"<html><head></head><body><p>A</p></body></html>","text":"A","highlighted":1,"essential":1,"paper":1,"likeSize":8,"commentSize":0,"repostSize":0,"favoriteSize":0,"link":"https://laohu8.com/post/894997093","repostId":2158688512,"repostType":4,"repost":{"id":"2158688512","kind":"highlight","weMediaInfo":{"introduction":"Reuters.com brings you the latest news from around the world, covering breaking news in markets, business, politics, entertainment and technology","home_visible":1,"media_name":"Reuters","id":"1036604489","head_image":"https://static.tigerbbs.com/443ce19704621c837795676028cec868"},"pubTimestamp":1628780903,"share":"https://www.laohu8.com/m/news/2158688512?lang=&edition=full","pubTime":"2021-08-12 23:08","market":"us","language":"en","title":"How hackers stole $600 mln in crypto tokens from Poly Network","url":"https://stock-news.laohu8.com/highlight/detail?id=2158688512","media":"Reuters","summary":"WASHINGTON, Aug 12 (Reuters) - Hackers pulled off the biggest ever cryptocurrency heist on Tuesday, ","content":"<p>WASHINGTON, Aug 12 (Reuters) - Hackers pulled off the biggest ever cryptocurrency heist on Tuesday, stealing more than $600 million in digital coins from token-swapping platform Poly Network, only to return $342 million worth of tokens less than 48 hours later, the company said.</p>\n<p>Here is what we know so far about the heist.</p>\n<p>WHAT IS POLY NETWORK?</p>\n<p>A lesser-known name in the world of crypto, Poly Network is a decentralized finance (DeFi) platform that facilitates peer-to-peer transactions with a focus on allowing users to transfer or swap tokens across different blockchains.</p>\n<p>For example, a customer could use Poly Network to transfer tokens such as bitcoin from the Ethereum blockchain to the Binance Smart Chain.</p>\n<p>Poly Network was founded by Chinese entrepreneur Da Hongfei, who is currently chief executive of Neo, a blockchain platform.</p>\n<p>According to Neo's website, Poly Network was launched in August last year as a collaboration between Neo, crypto trading platform Switcheo and blockchain company Ontology.</p>\n<p>HOW DID HACKERS STEAL THE TOKENS?</p>\n<p>Poly Network operates on the Binance Smart Chain, Ethereum and Polygon blockchains. Tokens are swapped between the blockchains using a smart contract which contains instructions on when to release the assets to the counterparties.</p>\n<p>One of the smart contracts that Poly Network uses to transfer tokens between blockchains maintains large amounts of liquidity to allow users to efficiently swap tokens, according to crypto intelligence firm CipherTrace.</p>\n<p>Poly Network tweeted on Tuesday that a preliminary investigation found the hackers exploited a vulnerability in this smart contract.</p>\n<p>According to an analysis of the transactions tweeted by Kelvin Fichter, an Ethereum programmer, the hackers appeared to override the contract instructions for each of the three blockchains and diverted the funds to three wallet addresses, digital locations for storing tokens. These were later traced and published by Poly Network.</p>\n<p>The attackers stole funds in more than 12 different cryptocurrencies, including ether and a type of bitcoin, according to blockchain forensics company Chainalysis.</p>\n<p>A person claiming to have perpetrated the hack said they had spotted a \"bug,\" without specifying, and that they wanted to \"expose the vulnerability\" before others could exploit it, according to digital messages posted on the Ethereum network published by Chainalysis. Reuters could not verify the authenticity of the messages.</p>\n<p>WHERE DID THE MONEY GO?</p>\n<p>Coindesk reported on Tuesday that the hackers had initially tried to transfer some of the assets from <a href=\"https://laohu8.com/S/AONE.U\">one</a> of the three wallets into liquidity pool Curve.fi, but that transfer was rejected. About $100 million was moved out of another of the wallets and deposited into liquidity pool Ellipsis Finance, Coindesk also reported.</p>\n<p>Curve.fi. and Ellipsis Finance could not immediately be reached for comment.</p>\n<p>But early Wednesday the hackers started transferring assets back to Poly Network and by Thursday morning had returned $342 million worth of tokens, with $268 million stolen from the Ethereum chain outstanding, Poly Network said. Around 10 a.m. ET (1400 GMT) on Thursday, Poly Network said it was still communicating with the hackers, who were gradually transferring back the remaining assets.</p>\n<p>WHO IS THE HACKER?</p>\n<p>The hacker or hackers have not yet been identified.</p>\n<p>Cryptocurrency security firm SlowMist said on its website that it has identified the attacker's mailbox, internet protocol address, and device fingerprints, but the company has not yet named any individuals. SlowMist said the heist was \"likely to be a long-planned, organized and prepared attack.\"</p>\n<p>Despite the purported hacker posing as a so-called \"white hat\", an ethical hacker who had \"always\" planned to give the money back, according to the messages published by Chainalysis, some crypto experts are skeptical.</p>\n<p>Gurvais Grigg, chief technology officer at Chainalysis and former FBI veteran, said it was unlikely that white hat hackers would steal such a large sum. He said on Wednesday that they had probably returned some of the funds because it had proved too difficult to convert them into cash.</p>\n<p>\"It's hard to know the motivation ... Let's see the if they return the whole amount,\" he added.</p>","collect":0,"html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>How hackers stole $600 mln in crypto tokens from Poly Network</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\nHow hackers stole $600 mln in crypto tokens from Poly Network\n</h2>\n\n<h4 class=\"meta\">\n\n\n<a class=\"head\" href=\"https://laohu8.com/wemedia/1036604489\">\n\n\n<div class=\"h-thumb\" style=\"background-image:url(https://static.tigerbbs.com/443ce19704621c837795676028cec868);background-size:cover;\"></div>\n\n<div class=\"h-content\">\n<p class=\"h-name\">Reuters </p>\n<p class=\"h-time\">2021-08-12 23:08</p>\n</div>\n\n</a>\n\n\n</h4>\n\n</header>\n<article>\n<p>WASHINGTON, Aug 12 (Reuters) - Hackers pulled off the biggest ever cryptocurrency heist on Tuesday, stealing more than $600 million in digital coins from token-swapping platform Poly Network, only to return $342 million worth of tokens less than 48 hours later, the company said.</p>\n<p>Here is what we know so far about the heist.</p>\n<p>WHAT IS POLY NETWORK?</p>\n<p>A lesser-known name in the world of crypto, Poly Network is a decentralized finance (DeFi) platform that facilitates peer-to-peer transactions with a focus on allowing users to transfer or swap tokens across different blockchains.</p>\n<p>For example, a customer could use Poly Network to transfer tokens such as bitcoin from the Ethereum blockchain to the Binance Smart Chain.</p>\n<p>Poly Network was founded by Chinese entrepreneur Da Hongfei, who is currently chief executive of Neo, a blockchain platform.</p>\n<p>According to Neo's website, Poly Network was launched in August last year as a collaboration between Neo, crypto trading platform Switcheo and blockchain company Ontology.</p>\n<p>HOW DID HACKERS STEAL THE TOKENS?</p>\n<p>Poly Network operates on the Binance Smart Chain, Ethereum and Polygon blockchains. Tokens are swapped between the blockchains using a smart contract which contains instructions on when to release the assets to the counterparties.</p>\n<p>One of the smart contracts that Poly Network uses to transfer tokens between blockchains maintains large amounts of liquidity to allow users to efficiently swap tokens, according to crypto intelligence firm CipherTrace.</p>\n<p>Poly Network tweeted on Tuesday that a preliminary investigation found the hackers exploited a vulnerability in this smart contract.</p>\n<p>According to an analysis of the transactions tweeted by Kelvin Fichter, an Ethereum programmer, the hackers appeared to override the contract instructions for each of the three blockchains and diverted the funds to three wallet addresses, digital locations for storing tokens. These were later traced and published by Poly Network.</p>\n<p>The attackers stole funds in more than 12 different cryptocurrencies, including ether and a type of bitcoin, according to blockchain forensics company Chainalysis.</p>\n<p>A person claiming to have perpetrated the hack said they had spotted a \"bug,\" without specifying, and that they wanted to \"expose the vulnerability\" before others could exploit it, according to digital messages posted on the Ethereum network published by Chainalysis. Reuters could not verify the authenticity of the messages.</p>\n<p>WHERE DID THE MONEY GO?</p>\n<p>Coindesk reported on Tuesday that the hackers had initially tried to transfer some of the assets from <a href=\"https://laohu8.com/S/AONE.U\">one</a> of the three wallets into liquidity pool Curve.fi, but that transfer was rejected. About $100 million was moved out of another of the wallets and deposited into liquidity pool Ellipsis Finance, Coindesk also reported.</p>\n<p>Curve.fi. and Ellipsis Finance could not immediately be reached for comment.</p>\n<p>But early Wednesday the hackers started transferring assets back to Poly Network and by Thursday morning had returned $342 million worth of tokens, with $268 million stolen from the Ethereum chain outstanding, Poly Network said. Around 10 a.m. ET (1400 GMT) on Thursday, Poly Network said it was still communicating with the hackers, who were gradually transferring back the remaining assets.</p>\n<p>WHO IS THE HACKER?</p>\n<p>The hacker or hackers have not yet been identified.</p>\n<p>Cryptocurrency security firm SlowMist said on its website that it has identified the attacker's mailbox, internet protocol address, and device fingerprints, but the company has not yet named any individuals. SlowMist said the heist was \"likely to be a long-planned, organized and prepared attack.\"</p>\n<p>Despite the purported hacker posing as a so-called \"white hat\", an ethical hacker who had \"always\" planned to give the money back, according to the messages published by Chainalysis, some crypto experts are skeptical.</p>\n<p>Gurvais Grigg, chief technology officer at Chainalysis and former FBI veteran, said it was unlikely that white hat hackers would steal such a large sum. He said on Wednesday that they had probably returned some of the funds because it had proved too difficult to convert them into cash.</p>\n<p>\"It's hard to know the motivation ... Let's see the if they return the whole amount,\" he added.</p>\n\n</article>\n</div>\n</body>\n</html>\n","type":0,"thumbnail":"","relate_stocks":{"COIN":"Coinbase Global, Inc."},"is_english":true,"share_image_url":"https://static.laohu8.com/e9f99090a1c2ed51c021029395664489","article_id":"2158688512","content_text":"WASHINGTON, Aug 12 (Reuters) - Hackers pulled off the biggest ever cryptocurrency heist on Tuesday, stealing more than $600 million in digital coins from token-swapping platform Poly Network, only to return $342 million worth of tokens less than 48 hours later, the company said.\nHere is what we know so far about the heist.\nWHAT IS POLY NETWORK?\nA lesser-known name in the world of crypto, Poly Network is a decentralized finance (DeFi) platform that facilitates peer-to-peer transactions with a focus on allowing users to transfer or swap tokens across different blockchains.\nFor example, a customer could use Poly Network to transfer tokens such as bitcoin from the Ethereum blockchain to the Binance Smart Chain.\nPoly Network was founded by Chinese entrepreneur Da Hongfei, who is currently chief executive of Neo, a blockchain platform.\nAccording to Neo's website, Poly Network was launched in August last year as a collaboration between Neo, crypto trading platform Switcheo and blockchain company Ontology.\nHOW DID HACKERS STEAL THE TOKENS?\nPoly Network operates on the Binance Smart Chain, Ethereum and Polygon blockchains. Tokens are swapped between the blockchains using a smart contract which contains instructions on when to release the assets to the counterparties.\nOne of the smart contracts that Poly Network uses to transfer tokens between blockchains maintains large amounts of liquidity to allow users to efficiently swap tokens, according to crypto intelligence firm CipherTrace.\nPoly Network tweeted on Tuesday that a preliminary investigation found the hackers exploited a vulnerability in this smart contract.\nAccording to an analysis of the transactions tweeted by Kelvin Fichter, an Ethereum programmer, the hackers appeared to override the contract instructions for each of the three blockchains and diverted the funds to three wallet addresses, digital locations for storing tokens. These were later traced and published by Poly Network.\nThe attackers stole funds in more than 12 different cryptocurrencies, including ether and a type of bitcoin, according to blockchain forensics company Chainalysis.\nA person claiming to have perpetrated the hack said they had spotted a \"bug,\" without specifying, and that they wanted to \"expose the vulnerability\" before others could exploit it, according to digital messages posted on the Ethereum network published by Chainalysis. Reuters could not verify the authenticity of the messages.\nWHERE DID THE MONEY GO?\nCoindesk reported on Tuesday that the hackers had initially tried to transfer some of the assets from one of the three wallets into liquidity pool Curve.fi, but that transfer was rejected. About $100 million was moved out of another of the wallets and deposited into liquidity pool Ellipsis Finance, Coindesk also reported.\nCurve.fi. and Ellipsis Finance could not immediately be reached for comment.\nBut early Wednesday the hackers started transferring assets back to Poly Network and by Thursday morning had returned $342 million worth of tokens, with $268 million stolen from the Ethereum chain outstanding, Poly Network said. Around 10 a.m. ET (1400 GMT) on Thursday, Poly Network said it was still communicating with the hackers, who were gradually transferring back the remaining assets.\nWHO IS THE HACKER?\nThe hacker or hackers have not yet been identified.\nCryptocurrency security firm SlowMist said on its website that it has identified the attacker's mailbox, internet protocol address, and device fingerprints, but the company has not yet named any individuals. SlowMist said the heist was \"likely to be a long-planned, organized and prepared attack.\"\nDespite the purported hacker posing as a so-called \"white hat\", an ethical hacker who had \"always\" planned to give the money back, according to the messages published by Chainalysis, some crypto experts are skeptical.\nGurvais Grigg, chief technology officer at Chainalysis and former FBI veteran, said it was unlikely that white hat hackers would steal such a large sum. He said on Wednesday that they had probably returned some of the funds because it had proved too difficult to convert them into cash.\n\"It's hard to know the motivation ... Let's see the if they return the whole amount,\" he added.","news_type":1},"isVote":1,"tweetType":1,"viewCount":254,"commentLimit":10,"likeStatus":false,"favoriteStatus":false,"reportStatus":false,"symbols":[],"verified":2,"subType":0,"readableState":1,"langContent":"EN","currentLanguage":"EN","warmUpFlag":false,"orderFlag":false,"shareable":true,"causeOfNotShareable":"","featuresForAnalytics":[],"commentAndTweetFlag":false,"andRepostAutoSelectedFlag":false,"upFlag":false,"length":1,"xxTargetLangEnum":"ORIG"},"commentList":[],"isCommentEnd":true,"isTiger":false,"isWeiXinMini":false,"url":"/m/post/894997093"}
精彩评论