Hdr_About.jpg

Detail Analysis

link.png

Date:

Status:

Count:

Contributor:

May 13, 2021

info.png

Verified

2

zerofriction.io

Loss Amount:

25,000,000

info.png

Recovered Amount:

-

Currency:

Dollars, xToken

KYC By:

Audit By:

None

Peckshield

info.png

Key Indicators

Platform:

Type:

Category:

Method:

Ethereum

Protocol

Yield

Contract Vulnerabilities

Extended Method:

Oracle manipulation

Data Sources:

info.png

The DeFi pledge and liquidity strategy platform xToken was attacked, and the xBNTaBancor pool and the xSNXaBalancer pool were immediately exhausted, causing nearly $25 million in losses. The SlowMist security team analyzed that the two modules that were hacked this time were the xBNTa contract and the xSNXa contract in xToken. The two contracts were subjected to a "counterfeit currency" attack and an oracle manipulation attack.

info.png

DISCLAIMER: While Zero Friction LLC has used the best efforts in aggregating and maintaining this database, Zero Friction LLC makes no representations or warranties with respect to the accuracy or completeness, and specifically disclaim any implied warranties of merchantability or fitness for any particular purpose. 

Under no circumstances, shall Zero Friction LLC be liable for any loss of profit or funds, any regulatory or governmental penalties, any legal costs, or any other commercial and non-commercial damages, including but not limited to special, incidental, consequential, or other damages from any or all usage of the dataset or information derived from our database.