01-02-2022, 03:09 PM
First hack of 2022?
<!-- SC_OFF --><div class="md"><p>Wild wild west strikes again. Looks like someone found a way to remove assets from the goBTC (wrapped btc on algorand) pool on Tinyman. Around 60BTC were drained. Boy that was fast.</p> <p>No official announcement is out yet, but here's a user's description of the sequence of the events:</p> <p>​</p> <blockquote> <p>From <a href="https://www.reddit.com/u/CryptoFarmer1020/">u/CryptoFarmer1020</a>: Deposited 88.573738 ALGO from Kucoin. This was about $150 at the time of deposit. So person is likely using a dollar framework. </p> <p>Opted into Algofi - Opted into goBTC-ALGO - Opted into goETH-ALGO </p> <p>Swapped 31.3 ALGO for 0.00115 goBTC. </p> <p>Added liquidity to goBTC-ALGO pool. </p> <p>Removed liquidity from pool and somehow got additional 0.3goBTC as part of the transaction. This is where whatever exploit they did probably happened. </p> <p>Swapped goBTC for ALGO. Added liquidity again. Removed liquidity and got additional 5 goBTC. Swapped again goBTC for ALGO </p> <p>Third time was the big drain. Added liquidity, then removed and got 28+ goBTC extra. </p> <p>Edit4: Timeline continued.<br/> They moved on and did the same to the goETH-ALGO pool and got about 130 goETH<br/> Started to convert both goETH and goBTC to USDC and then to ALGO. Sent both back to Kucoin, 58.6K ALGO and 248K USDC<br/> Parked 123.5K goETH and 5.6 goBTC in Algofi. Wallet still has 21.4 goBTC and 2K Algos. </p> </blockquote> <p><a href="https://np.reddit.com/r/algorand/comments/rtr6l3/comment/hquxban/?utm_source=share&utm_medium=web2x&context=3">Read more in the Algorand reddit</a></p> <p>This may be affecting other liquidity pools on tinyman so it could turn out into a much bigger shitfest.</p> <p>​</p> <p>Edit: goETH were also drained from the pool.</p> </div><!-- SC_ON --> submitted by <a href="https://www.reddit.com/user/Fmarulezkd"> /u/Fmarulezkd </a> <br/> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/rtx7l8/first_hack_of_2022/">[link]</a></span> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/rtx7l8/first_hack_of_2022/">[comments]</a></span>Kind Regards R
<!-- SC_OFF --><div class="md"><p>Wild wild west strikes again. Looks like someone found a way to remove assets from the goBTC (wrapped btc on algorand) pool on Tinyman. Around 60BTC were drained. Boy that was fast.</p> <p>No official announcement is out yet, but here's a user's description of the sequence of the events:</p> <p>​</p> <blockquote> <p>From <a href="https://www.reddit.com/u/CryptoFarmer1020/">u/CryptoFarmer1020</a>: Deposited 88.573738 ALGO from Kucoin. This was about $150 at the time of deposit. So person is likely using a dollar framework. </p> <p>Opted into Algofi - Opted into goBTC-ALGO - Opted into goETH-ALGO </p> <p>Swapped 31.3 ALGO for 0.00115 goBTC. </p> <p>Added liquidity to goBTC-ALGO pool. </p> <p>Removed liquidity from pool and somehow got additional 0.3goBTC as part of the transaction. This is where whatever exploit they did probably happened. </p> <p>Swapped goBTC for ALGO. Added liquidity again. Removed liquidity and got additional 5 goBTC. Swapped again goBTC for ALGO </p> <p>Third time was the big drain. Added liquidity, then removed and got 28+ goBTC extra. </p> <p>Edit4: Timeline continued.<br/> They moved on and did the same to the goETH-ALGO pool and got about 130 goETH<br/> Started to convert both goETH and goBTC to USDC and then to ALGO. Sent both back to Kucoin, 58.6K ALGO and 248K USDC<br/> Parked 123.5K goETH and 5.6 goBTC in Algofi. Wallet still has 21.4 goBTC and 2K Algos. </p> </blockquote> <p><a href="https://np.reddit.com/r/algorand/comments/rtr6l3/comment/hquxban/?utm_source=share&utm_medium=web2x&context=3">Read more in the Algorand reddit</a></p> <p>This may be affecting other liquidity pools on tinyman so it could turn out into a much bigger shitfest.</p> <p>​</p> <p>Edit: goETH were also drained from the pool.</p> </div><!-- SC_ON --> submitted by <a href="https://www.reddit.com/user/Fmarulezkd"> /u/Fmarulezkd </a> <br/> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/rtx7l8/first_hack_of_2022/">[link]</a></span> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/rtx7l8/first_hack_of_2022/">[comments]</a></span>Kind Regards R