backgroundbackground

Friendly Summary of "SolSEE: A Source-Level Symbolic Execution Engine for Solidity"

The founding team of MetaTrust has conducted research and published a paper to introduces SolSEE. What's SolSEE All About?

MetaTrust Labs
7 months ago
Educational

Radiant Protocol on Arbitrum Suffers Flashloan Attack, Resulting in $4.5M Loss: In-Depth Analysis Reveals Exploit Details

On Jan-03-2024 UTC+8:00, the Radiant protocol on Arbitrum was under the flashloan attack. The hacker attacked the #Radiant protocol 3 times, resulting in a total loss of 1.9K $ETH(worth $4.5m).

Daniel Tan
8 months ago
Analysis

Earning.Farm Lost $536,000 Due to Logic Flaw in Smart Contract "Withdraw" Function

Earning.Farm fell victim to smart contract logic vulnerability, suffering loss of approximately 288 ETH.

Daniel Tan
about 1 year ago
Analysis

Deep Security Analysis of the ASKACR attack

On March 21, 2023, at 01:39:47 PM +UTC, the attacker(0xb189943) created and manipulated many new contracts, which gained ASKACR tokens from the ASKACR contract itself. Finally, the attacker gained 28,633 BSC-USD from the attack.

Daniel Tan
over 1 year ago
Analysis

How the 120k ETH was recovered from the exploiter of Wormhole attacker

On February 2, 2022, at 18:24:13 UTC, a mysterious attacker launched an attack on the Wormhole cross-chain bridge on the Solana blockchain. Ultimately, the attacker successfully obtained 120,000 WETH from the Solana chain and transferred it to Ethereum through the cross-chain bridge. Without going into the specifics, we know that the attacker has successfully transferred the acquired WETH to their address on Ethereum. Afterward, the attacker disappeared and left behind this shocking event…

BradMoon
over 1 year ago
Analysis

The BNB chain suffered from a deflation token attack, and Metatrust discovered several dozens of tokens on the EVM chain that were unaffected

On February 10, 2023, some reflection mechanism tokens on BNB Chain were attacked and spread to multiple tokens. MetaTrust conducted a thorough analysis and found several dozens of tokens that were not yet attacked through its exclusive IP Analyzer engine.

BradMoon
over 1 year ago
Report

Defrost Finance Event Analysis

An analysis of the Defrost Finance project hack that occurred on December 23, 2022. The hack involved a re-entrancy attack and a rug pull, resulting in the loss of over $12 million. This post provides transaction information, attack processes, and an analysis of the vulnerabilities that led to the hack. MetaScan has the ability to scan for these types of risks.

BradMoon
over 1 year ago
Analysis

From the Source: Analysis of DFX Finance Attack

An analysis of the DFX Finance attack, focusing on the smart contract code. The attacker exploited a vulnerability in the Curve contract that allowed them to re-enter the deposit function and deposit borrowed tokens, which were then treated as repayment. The attack demonstrates the importance of carefully evaluating the impact of each callback and checking dependent state variables to avoid similar problems.

BradMoon
almost 2 years ago
Analysis