People like to say the DeFi space is like the wild west, but that's just the beginning of a new chapter.
2020
February 18, 2020
Some exploiters took advantage of DeFi to pocket $900k in just seconds; the bZx hack happened here.
February 21, 2020
Fulcrum had a serious vulnerability worth $2.5M for over a month and still hasn’t informed anyone about it.
April 19, 2020
The dForce protocol, backed by Multicoin Capital, lost around $25M in total locked value due to an exploit.
April 21, 2020
Dforce managed to recover the full $25 million!
May 19, 2020
BlockFi got hit by a data breach a crypto lending hack.
June 18, 2020
A bug in the cryptocurrency put $545,000 of DeFi funds in jeopardy.
June 20, 2020
Balancer got hacked for about $500,000.
July 14, 2020
One trader made $550K in just 30 minutes thanks to the BZRX listing on Uniswap.
August 5, 2020
Experts said a glaring "bug" caused a $370,000 DeFi hack, specifically the Opyn hack.
September 7, 2020
A user turned $200 into $250k thanks to a bug in Soft Yearn (SYFI).
Ive read before the issue on Uniswap when BZRX launches their IDO but as Ive read the article the author explained how the guy made 500k usd but not in the form of hack but incorporate a defi trading bot. As far as Ive known, using bots on trading is common its just happened that we can see now the cons of smart contract where it can be easily penetraded by the likes of this. Im not sure whether this included or considered as hack history. Actually the guy is smart. Does he violate any rule on dex? Not sure but this could be raise on authority as one of the example of threats on defi business.
In a short period, a lot of DeFi projects got hacked. I invested in BAL kinda at a peak and as soon as news about hack broke price fell sharply but, now thanks to binance listing and BTC price surge I was able to break even on my investment. Got lucky i guess.
Thanks! It is very important to give people real information. People think that decentralized finances do not have any risks! But it is absolutely vice versa. It is a new industry, new code, no one tested it for a long time, so be careful and invest only what you can afford.
Good thread, and it seems like this can make people who want to invest in DeFi to increase their knowledge so they don't regret after buying DeFi coin, in addition to hacking cases there are actually also frequent exit scams like this $100 DeFi coin which can drop to $9 less in one week.
If you look at the losses, this is a small amount compared to what was stolen from crypto exchanges.
I use defi for exchange, hedging, but I do not recommend newcomers to invest in pools. You can make a profit as well as incur a loss if someone makes a successful arbitration.
https://furucombo.app/
I will recommend an interesting project to get acquainted with defi. It allows almost any user to experience the defi ecosystem without having enough knowledge and coins.
@zasad this is a really impressive project before I had to go to different DeFi sites to complete an arbitrage trade but, here it's all simple and from one site. This will also save me from some price slippage if I am correct.
Bookmarked and thanks
It's amazing that in just 1 year there have been 9 attacks on decentralized finance. it is a challenge for developers to fix the system to cover the loopholes that could be harmful. also to realize a new and better security system.
too overhype DEFI even there are a lot of attack events that occur, the average attack is by manipulating smart contracts, and it's done repeatedly as if they understand the weaknesses that exist,
and it's been just a few terrible days
The project is excellent, but finding an arbitration opportunity to earn money is a very difficult process.
In practice, I myself constantly face the problem of large commissions, when when exchanging tokens or stablecoins for 1000 dollars, I have to pay 30-50 dollars in commission. At such a cost, this system cannot compete with centralized exchanges.
And by the launch of the 2nd phase of ETH 2.0, it is possible that user-friendly interfaces for many projects will be made, and then a new milestone in the world of cryptocurrencies will come.
I think the pump in price of ethereum is also instrumental in the dump of other DEFI, if after any long sideway price move of ethereum we dont see some come back of the DEFI then I might probably have a rethink on them. Actually I dont expect a 100% success of every DEFI coin because the team and community defers in capacity of project development and financial strength. Some still believe it is a good way to pull back the market to start the bull run.
The amount is small because the amount of funds in DeFi is also small. If you want to compare the two, you should use percentages of total funds. In DeFi the losses are pretty big, like a half of the funds or all of the funds. With exchanges, they generally don't lose all their money if it's no an exit scam. Their how wallets is just a fraction of the coins that they hold.
And if you take this year, it's clear that there was more of the DeFi hacks than exchange hacks. So, thinks kinda look not good for DeFi, though it seem to have no effect on hype for now.
All these hacks are bound to happen with DEFI space just getting the attention recently hacker are bound to look for vulnerabilities in the system and exploit it but the main question is if the team would learn from mistakes and make the space better
There were 2 more Defi smart contracts that had bugs that were exploited again. Where did these developers come from? I reckon some of them might be the unqualified developers who were rejected or will be rejected by legitimate tech companies.
I am sorry. I do not want to call them bad, however, investors are losing money because of their incompetence.
DeFi meme coin YAM has succumbed to a bug within its rebase function, meaning the coin has lost control of its on-chain governance feature.
All of the roughly $750,000 Curve tokens stored in the project's treasury are lost as well, according to a Medium blog from the team.
Source https://www.coindesk.com/defi-meme-coin-yam-succumbs-to-fatal-rebase-bug
The CRV token officially, yet unexpectedly, launched at 6:25 PM EST today after an anonymous user, apparently unilaterally, deployed the open-source CRV token and CurveDAO contracts on the Ethereum mainnet earlier in the day.
Source https://decrypt.co/38708/anonymous-defi-user-deploys-curve-crv-token-early
Aside from the bugs and developer's incompetence. I dont think we should shift the blame on them alone. There is also some problem on the side of investors. They just keep jumping off any defi projects that they will saw without much any knowledge on the tech and its function. Im sure 2 of these defi projects have been bought by fomo squads. Definitely when they already on rekt mode, they will spat scam on these. Typical but thats how the cycle rolls and curve will likely be a hot token for being listed on Binance.
@cryptoaddictchie. I am not talking about the scams on the market and how we are manipulated to lose our investments. This thread is about hacks and exploits because of developer incompetence.
Is this really the future of finance? This is the comedy of the cryptospace.
Im aware dude. I just given emphasize on the quoted part. But thanks for sharing the info about the incident especially on yam's case. Though that incident doesnt really can be called hacked but like what you said lack of competence and failure to accomplish its goal.
Well in fairness some agree to that. But seriously, in my opinion only few of them makes that comedy. Not all are shit but some have good ideals too.