Sentient Loses $1 Million to a Balancer Attack on Arbitrum Network

04/05/2023 01:31 • Crypto & Markets • 64 views

On April 5th, according to PeckShield monitoring, Sentient, an unlicensed partial mortgage loan agreement, was stolen about $1 million on the Arbitrum network early this morning. The root cause is the read-only and reentrant nature of Balancer.

Security team: Sentient loan agreement stolen $1 million on the Arbitrum network

As cryptocurrency continues to gain popularity and adoption, it unfortunately also attracts malicious actors looking to exploit vulnerabilities in the systems. On April 5th, Sentient, an unlicensed partial mortgage loan agreement, lost $1 million to a Balancer attack on the Arbitrum network.

What is Sentient?

Sentient is a DeFi platform that allows users to access fractional ownership of real estate. Users can invest in mortgage loans and earn returns from the interest paid by borrowers. Sentient is built on on-chain smart contracts and uses blockchain technology to ensure transparent and secure transactions.

The Balancer Hack

According to PeckShield monitoring, the Sentient hack was caused by a read-only and reentrant vulnerability in the Balancer protocol. Balancer is an automated market maker that allows users to trade ERC20 tokens. The vulnerability allowed an attacker to withdraw tokens from a pool multiple times before its balance was updated, resulting in a loss of $1 million worth of tokens.

Lessons Learned

This attack highlights the importance of security in DeFi platforms. While decentralized finance promises greater accessibility and transparency, it also requires users to take responsibility for their own security. Investors should thoroughly research platforms before investing and ensure that they have appropriate security measures in place to protect against potential attacks.

Balancer Response

Balancer responded quickly to the hack, releasing a statement acknowledging the vulnerability and announcing a bug bounty program to encourage security researchers to report any further vulnerabilities. They also promised to implement further security measures to prevent similar attacks in the future.

Conclusion

The Sentient hack is a reminder that even the most well-designed platforms can be vulnerable to attack. As the DeFi industry continues to grow, it is important that security remains a top priority to prevent further losses to both investors and platforms.

FAQs

1. Can I still invest in Sentient after the hack?
Sentient has not released any statement regarding the safety of its platform following the hack. We recommend exercising caution and conducting thorough research before investing.
2. What is a bug bounty program?
A bug bounty program is a reward offered by a company or platform to security researchers for finding vulnerabilities in their software. By incentivizing researchers to report vulnerabilities, companies can better protect their systems from attack.
3. What other security measures can I take to protect my DeFi investments?
In addition to conducting research on platforms, investors can take measures such as using hardware wallets, keeping their private keys secure, and not sharing sensitive information with others.

This article and pictures are from the Internet and do not represent qiAiAi's position. If you infringe, please contact us to delete:https://www.qiaiai.com/crypto/13735.html

It is strongly recommended that you study, review, analyze and verify the content independently, use the relevant data and content carefully, and bear all risks arising therefrom.