{"id":237389,"date":"2021-04-28T14:03:03","date_gmt":"2021-04-28T11:03:03","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/50m-reportedly-stolen-from-bsc-based-uranium-finance\/"},"modified":"2021-04-28T14:03:03","modified_gmt":"2021-04-28T11:03:03","slug":"50m-reportedly-stolen-from-bsc-based-uranium-finance","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/50m-reportedly-stolen-from-bsc-based-uranium-finance\/","title":{"rendered":"# $50M reportedly stolen from BSC-based Uranium Finance"},"content":{"rendered":"<p>&#8220;<strong># $50M reportedly stolen from BSC-based Uranium Finance <\/strong>&#8221;<\/p>\n<div class=\"post-content\" data-v-5a136f3a>Uranium Finance, an automated market maker platform on the Binance Smart Chain has reported a security incident that resulted in a loss of about $50 million.<\/p>\n<p><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/UraniumFinance\/status\/1387245696454041600\">Tweeting<\/a> on Wednesday, Uranium revealed that the exploit targeted its v2.1 token migration event and that the team was in contact with the Binance Security Team to mitigate the situation.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">(1\/2)\u203c\ufe0f Uranium migration has been exploited, the following address has 50m in it  The only thing that matters is keeping the funds on BSC, everyone please start tweeting this address to Binance im<a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">media<\/a>tely asking them to stop transfers.<\/p>\n<p>\u2014 Uranium Finance (@UraniumFinance) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/UraniumFinance\/status\/1387245696454041600?ref_src=twsrc%5Etfw\">April 28, 2021<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>The hacker reportedly took advantage of bugs in Uranium\u2019s balance modifier logic that inflated the project\u2019s balance by a factor of 100.<\/p>\n<p>This error reportedly allowed the attacker to steal $50 million from the project. As of the time of writing, the contract created by the hacker still <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/bscscan.com\/address\/0x2b528a28451e9853f51616f3b0f6d82af8bea6ae#tokentxns\">holds<\/a> $36.8 million in Binance Coin (BNB) and Binance Dollar (BUSD).<\/p>\n<p>The remaining stolen funds include 80 Bitcoin (BTC), 1,800 Ether (ETH), 26,500 Polkadot (DOT), and 5.7 million Tether (USDT) as well as 638,000 Cardano (ADA) and 112,000 u92, the project&#8217;s native coin. <\/p>\n<p>Details from BSCscan show the attacker sw<a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>ing the ADA and DOT tokens for ETH, upping the Ether stash to about 2,400 ETH.<\/p>\n<p>Meanwhile, the alleged mastermind of the theft has already moved 2,400 ETH, worth about $5.7 million using the Ethereum privacy tool Tornado Cash.<\/p>\n<p><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/etherscan.io\/address\/0xc61429117038a1f13881dd7410b80771f28e06ec\">Data<\/a> from Ethereum chain monitoring service Etherscan shows the funds moving in 100 ETH sums with the cross-chain decentralized exchange bridge AnySwap used to migrate funds from BSC to the Ethereum network.<\/p>\n<figure><img decoding=\"async\" src=\"https:\/\/s3.cointelegraph.com\/uploads\/2021-04\/4146b84f-e59b-45f0-abfd-d17a893a5802.png\" alt=\"\" title=\"\"><figcaption style=\"text-align: center;\"><em>Source: Etherscan<\/em><\/figcaption><\/figure>\n<p>According to Uranium, the project has reached out to the Binance Security team to prevent the hacker from moving more funds out of the BSC ecosystem.<\/p>\n<p>Binance not immediately respond to Cointelegraph&#8217;s request for comment. Uranium declined to comment.<\/p>\n<p>Wednesday\u2019s hack is the second attack on the Uranium project in quick succession. Earlier in April, hackers exploited one of the platform\u2019s pools stealing about <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/uraniumfinance.medium.com\/uranium-post-mortem-v2-compensations-aac4b0706d7d\">$1.3 million<\/a> worth of BUSD and BNB.<\/p>\n<p>Indeed, the incident led to the first migration to v2 less than two weeks ago. In a previous <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/uraniumfinance.medium.com\/uranium-v2-more-details-about-the-audits-9c154f2cf7f9\">announcement<\/a>, the Uranium dev team said that multiple entities had audited its v2 contracts and that it had learned from its previous mistakes.<\/p>\n<p>Meanwhile, speculation is rife as to whether the attack was an inside job given the sudden decision to engineer another version upgrade barely 11 days after completing the v2 migration.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Today <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/UraniumFinance?ref_src=twsrc%5Etfw\">@UraniumFinance<\/a> got rekt. The Uranium devs had just deployed v2 of their contracts, and 11 days later they asked everyone to migrate to v2.1. Pretty odd timing for an upgrade, right? <\/p>\n<p>Here&#8217;s how the bug worked. \u2b07\ufe0f<\/p>\n<p>\u2014 Kyle &#8220;1B TVL&#8221; Kistner | Fulcrum | bZx (@BeTheb0x) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/BeTheb0x\/status\/1387288334649622528?ref_src=twsrc%5Etfw\">April 28, 2021<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Hacks associated with smart contract bugs are commonplace within the decentralized finance arena even for fully audited projects as was the case with MonsterSlayer Finance earlier in April. Back in March, Meerkat, a Yearn Finance clone on the BSC reportedly \u201cexit-scammed\u201d its users, stealing $31 million in the process.<\/p>\n<p>Days later the project\u2019s dev team revealed the alleged \u201crug pull\u201d was a test while outlining plans to return the funds. TurtleDex, another BSC-based project also exit-scammed shortly after its launch, draining over 9,000 BNB tokens raised during the pre-sale.<\/p>\n<p><template data-name=\"subscription_form\" data-type=\"defi_newsletter\"><\/template><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a> articles, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/general\/\" target=\"_blank\" rel=\"noopener\">General category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/cointelegraph.com\/news\/50m-reportedly-stolen-from-bsc-based-uranium-finance\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;# $50M reportedly stolen from BSC-based Uranium Finance &#8221; Uranium Finance, an automated market maker platform on the Binance Smart Chain has reported a security incident that resulted in a loss of about $50 million. Tweeting on Wednesday, Uranium revealed that the exploit targeted its v2.1 token migration event and that the team was in&#8230;<\/p>\n","protected":false},"author":1,"featured_media":237390,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/images.cointelegraph.com\/images\/1200_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjEtMDQvYTJlN2EzNWMtMDcwMy00ZmQzLTg4YTctMzM0ZDNlMTEyZDc0LmpwZw==.jpg","fifu_image_alt":"","footnotes":""},"categories":[1],"tags":[75014,75166,74894,74882,70944,71101],"class_list":["post-237389","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general","tag-binance","tag-binance-coin","tag-blockchain","tag-hacks","tag-hackers","tag-scams"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/237389","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=237389"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/237389\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/237390"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=237389"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=237389"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=237389"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}