{"id":10494,"date":"2022-10-12T03:18:15","date_gmt":"2022-10-12T03:18:15","guid":{"rendered":"https:\/\/coingrafter.com\/index.php\/2022\/10\/12\/solana-based-defi-platform-hacked-in-a-100-million-exploit-heres-the-details\/"},"modified":"2022-10-12T03:18:16","modified_gmt":"2022-10-12T03:18:16","slug":"solana-based-defi-platform-hacked-in-a-100-million-exploit-heres-the-details","status":"publish","type":"post","link":"https:\/\/coingrafter.com\/index.php\/2022\/10\/12\/solana-based-defi-platform-hacked-in-a-100-million-exploit-heres-the-details\/","title":{"rendered":"Solana-based DeFi platform hacked in a $100 Million Exploit, Here&#8217;s the Details"},"content":{"rendered":"<p> [ad_1]<br \/>\n<\/p>\n<div>\n<p>\n<iframe loading=\"lazy\" src=\"https:\/\/coingape.com\/solana-based-defi-platform-hacked-in-a-100-million-exploit-heres-the-details\/about:blank\" width=\"320\" height=\"100\" marginwidth=\"0\" marginheight=\"0\" hspace=\"0\" vspace=\"0\" frameborder=\"0\" scrolling=\"no\" data-rocket-lazyload=\"fitvidscompatible\" data-lazy-src=\"https:\/\/servedbyadbutler.com\/adserve\/;ID=180936;size=320x100;setID=508113;type=iframe;click=CLICK_MACRO_PLACEHOLDER\"><br \/>\n<\/iframe><noscript><iframe loading=\"lazy\" src=\"https:\/\/servedbyadbutler.com\/adserve\/;ID=180936;size=320x100;setID=508113;type=iframe;click=CLICK_MACRO_PLACEHOLDER\" width=\"320\" height=\"100\" marginwidth=\"0\" marginheight=\"0\" hspace=\"0\" vspace=\"0\" frameborder=\"0\" scrolling=\"no\"><br \/>\n<\/iframe><\/noscript>\n<\/p>\n<p>Solana-based decentralized finance (DeFi) protocol Mango Markets has been the sufferer of the hack in the newest exploit. As per the particulars, the attacker has managed to empty greater than $100 million from the DeFi protocol.<\/p>\n<div class=\"quads-location quads-ad90952 \" id=\"quads-ad90952\" style=\"float:none;text-align:center;padding:0px 0 0px 0;\">\n<a href=\"https:\/\/servedbyadbutler.com\/go2\/;ID=180936;size=647x80;setID=509734\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" width=\"647\" height=\"80\" src=\"https:\/\/servedbyadbutler.com\/adserve\/;ID=180936;size=647x80;setID=509734;type=img;click=CLICK_MACRO_PLACEHOLDER\"\/><noscript><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/servedbyadbutler.com\/adserve\/;ID=180936;size=647x80;setID=509734;type=img;click=CLICK_MACRO_PLACEHOLDER\" width=\"647\" height=\"80\"\/><\/noscript><\/a>\n<\/div>\n<p>As per the particulars offered by the blockchain auditing web site OtterSec, the attacker managed to get a giant variety of loans from the Mango Treasury by manipulating the DeFi protocol\u2019s collateral. This resulted in a large lack of funds from the Mango Treasury.<\/p>\n<p>Mago Markets is a Solana-based DeFi platform that trades digital property for spot margin and buying and selling perpetual futures. Mango\u2019s decentralized autonomous group (DAO) manages the general governance of the Mango Markets. The DeFi protocol has taken fast cognizance of the matter <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/mangomarkets\/status\/1579979345309102081\" target=\"_blank\">noting<\/a>:<\/p>\n<blockquote>\n<p>We are at the moment investigating an incident the place a hacker was in a position to drain funds from Mango through an oracle worth manipulation. We are taking steps to have third events freeze funds in flight. We shall be disabling deposits on the entrance finish as a precaution and can preserve you up to date as the scenario evolves.<\/p>\n<\/blockquote>\n<p>Mango Markets has requested its customers to not make any recent deposits till the scenario is obvious. Furthermore, it&#8217;s reaching out to the attacker for the return of the funds whereas providing some bug bounty.<\/p>\n<h3>The Exploit of Mango Markets<\/h3>\n<p>Joshua Lim, the Head of Derivatives at Genesis Global Trading, has offered additional particulars into how the hacker orchestrated the hack. He writes:<\/p>\n<ol>\n<li>At 6:19 PM ET, attacker funded acct A (CQvKS\u2026) with 5mm USDC collateral.<\/li>\n<li>The attacker then supplied out 483mm items of MNGO perps on the order guide.<\/li>\n<li>At 6:24 PM ET, attacker funded acct B (4ND8F\u2026) with 5mm USDC collateral to purchase these 483mm items of MNGO perps, at a worth of $0.0382 per unit.<\/li>\n<li>At 6:26 PM ET, attacker began to maneuver the worth of MNGO spot mkt, it traded as excessive as $0.91.<\/li>\n<li>At MNGO\/USD worth of $0.91 per unit, account B was in the cash by 483mm * ($0.91 \u2013 $0.03298) = $423mm.<\/li>\n<\/ol>\n<p>With this P&amp;L, the attacker then took out $116 million in loans throughout all tokens. Joshua writes that the attacker <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/joshua_j_lim\/status\/1579987679449878528\" target=\"_blank\">wiped out<\/a> all liquidity on Mango.<\/p>\n<div class=\"TabDicA\">\n<div class=\"TBAcon \">\n<div class=\"authorFlip tabcS\" id=\"TabA123780\">\n<div class=\"authorBox\">\n<div class=\"author_Name\">\n<p>\nBhushan is a FinTech fanatic and holds a good aptitude in understanding monetary markets. His curiosity in economics and finance draw his consideration in direction of the new rising Blockchain Technology and Cryptocurrency markets. He is constantly in a studying course of and retains himself motivated by sharing his acquired information. In free time he reads thriller fictions novels and generally discover his culinary expertise.\n<\/p>\n<\/div>\n<div class=\"author_Image\">\n<img loading=\"lazy\" decoding=\"async\" alt=\"\" srcset=\"https:\/\/secure.gravatar.com\/avatar\/6d622b7613c3c79c72d94a2e7cffa3b2?s=400&amp;d=mm&amp;r=g 2x\" class=\"avatar avatar-200 photo\" height=\"200\" width=\"200\" src=\"https:\/\/secure.gravatar.com\/avatar\/6d622b7613c3c79c72d94a2e7cffa3b2?s=200&amp;d=mm&amp;r=g\"\/><noscript><img loading=\"lazy\" decoding=\"async\" alt=\"\" src=\"https:\/\/secure.gravatar.com\/avatar\/6d622b7613c3c79c72d94a2e7cffa3b2?s=200&amp;d=mm&amp;r=g\" srcset=\"https:\/\/secure.gravatar.com\/avatar\/6d622b7613c3c79c72d94a2e7cffa3b2?s=400&amp;d=mm&amp;r=g 2x\" class=\"avatar avatar-200 photo\" height=\"200\" width=\"200\"\/><\/noscript> <\/div>\n<\/div>\n<\/div>\n<div class=\"TabDesCm tabcS\" id=\"TabD123780\">\n<p> The offered content material might embody the private opinion of the writer and is topic to market situation. Do your market analysis earlier than investing in cryptocurrencies. The writer or the publication doesn&#8217;t maintain any accountability to your private monetary loss.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<p><script async src=\"\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/>[ad_2]<br \/>\n<br \/><a href=\"https:\/\/coingape.com\/solana-based-defi-platform-hacked-in-a-100-million-exploit-heres-the-details\/\">Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[ad_1] Solana-based decentralized finance (DeFi) protocol Mango Markets has been the sufferer of the hack in the newest exploit. As per the particulars, the attacker has managed to empty greater than $100 million from the DeFi protocol. As per the particulars offered by the blockchain auditing web site OtterSec, the attacker managed to get a [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":10496,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[14],"tags":[202,1618,147,1185,168,84,368,1545],"class_list":["post-10494","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-altcoin","tag-defi","tag-details","tag-exploit","tag-hacked","tag-heres","tag-million","tag-platform","tag-solanabased","entry","has-media","owp-thumbs-layout-horizontal","owp-btn-normal","owp-tabs-layout-horizontal","has-no-thumbnails","has-product-nav"],"_links":{"self":[{"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/posts\/10494","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/comments?post=10494"}],"version-history":[{"count":1,"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/posts\/10494\/revisions"}],"predecessor-version":[{"id":10495,"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/posts\/10494\/revisions\/10495"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/media\/10496"}],"wp:attachment":[{"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/media?parent=10494"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/categories?post=10494"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coingrafter.com\/index.php\/wp-json\/wp\/v2\/tags?post=10494"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}