Akropolis DeFi protocol 'paused' as hackers get away with $2M in DAI

Veröffentlicht auf by Cointele | Veröffentlicht auf

Blockchain records show the hackers got away with more than $2,051,159 in DAI before moving the funds to a different address.

Hackers were reportedly able to exploit savings pools at Gibraltar-based decentralized finance protocol Akropolis, getting away with more than $2 million in stablecoins.

The firm stated on Twitter on April 12 that it had identified a hack "Executed across a body of smart contracts in the savings pools." Akropolis said the areas targeted by the hackers had already been audited twice, and only included "Curve Y and Curve sUSD savings pools."

Ethereum blockchain records show the hackers got away with more than 2,030,850 Dai by exploiting these savings pools.

Akropolis has since issued a statement on its website stating that "The majority of funds" are safe and it would be pausing all stablecoin pools.

Akropolis founder and CEO Ana Andrianova has disputed claims that the attack was executed in a similar manner to the one on decentralized finance protocol Harvest Finance in October.

In that case, hackers were able to exploit more than $24 million from the DeFi project's pools and swap it for renBTC. Akropolis stated that the exploit used was "a combination of a re-entrancy attack with dYdX flash loan origination."

CertiK, the security company firm which audited Akropolis' smart contracts, seemingly missed the two attack vectors used by the hackers in this case.

Data from crypto analytics firm CipherTrace reported on Tuesday suggest that while hacks on decentralized finance protocols were "Virtually negligible" in 2019, they now account for 20% of crypto losses from thefts and hacks.

"The surge in DeFi was what ultimately attracted criminal hackers, resulting in the most hacks for the sector this year," stated the report.

x