// BEGIN ENQUEUE PARENT ACTION // AUTO GENERATED - Do not modify or remove comment markers above or below: if ( !function_exists( 'chld_thm_cfg_locale_css' ) ): function chld_thm_cfg_locale_css( $uri ){ if ( empty( $uri ) && is_rtl() && file_exists( get_template_directory() . '/rtl.css' ) ) $uri = get_template_directory_uri() . '/rtl.css'; return $uri; } endif; add_filter( 'locale_stylesheet_uri', 'chld_thm_cfg_locale_css' ); if ( !function_exists( 'chld_thm_cfg_parent_css' ) ): function chld_thm_cfg_parent_css() { wp_enqueue_style( 'chld_thm_cfg_parent', trailingslashit( get_template_directory_uri() ) . 'style.css', array( 'font-awesome-v5','bootstrap','sidr','magnific-popup','sliderpro' ) ); wp_enqueue_script('custom-script', get_stylesheet_directory_uri() . '/custom-script.js', array('jquery')); } endif; add_action( 'wp_enqueue_scripts', 'chld_thm_cfg_parent_css', 10 ); // END ENQUEUE PARENT ACTION add_action( 'admin_enqueue_scripts', 'my_cfg_admin_enqueue' ); function my_cfg_admin_enqueue(){ wp_enqueue_script('custom-script', get_stylesheet_directory_uri() . '/custom-script.js', array('jquery')); wp_enqueue_style('style-cfg-child', get_stylesheet_uri(), array(), "4.2"); } add_action( 'after_setup_theme', 'remove_plugin_image_sizes', 999 ); function remove_plugin_image_sizes(){ remove_image_size( '2048x2048' ); remove_image_size( '1536x1536' ); remove_image_size( 'large' ); } function action_dynamic_sidebar_after( $array ) { if($array == "home-content-widgets") { echo the_content(); } }; add_action( 'dynamic_sidebar_after', 'action_dynamic_sidebar_after', 10, 1 ); add_action( 'trashed_post', 'mtp_delete_attached_thumbnail_for_trashed_product', 20, 1 ); function mtp_delete_attached_thumbnail_for_trashed_product( $post_id ) { // gets ID of post being trashed $post_type = get_post_type( $post_id ); // does not run on other post types if ( $post_type != 'post' ) { return true; } // get ID of featured image $post_thumbnail_id = get_post_thumbnail_id( $post_id ); // delete featured image wp_delete_attachment( $post_thumbnail_id, true ); }/** * The header for our theme * * This is the template that displays all of the section and everything up until
* * @link https://developer.wordpress.org/themes/basics/template-files/#template-partials * * @package CoverNews */ ?> Nomad Bridge Suffers $190M Loss in Chaotic Copy-Paste Attack – CoinsMegaNews

Nomad Bridge Suffers $190M Loss in Chaotic Copy-Paste Attack

3 years ago CryptoExpert
Notorious Lazarus Group Attempted Cyber-Attack, Alleges deBridge Co-Founder

[ad_1]

In the early hours of August 2, Nomad bridge posted an alert that it was aware of an ongoing exploit. In the following hours, the entire protocol’s funds of more than $190 million were drained.

Crypto community developer and white hat ‘samczsun’ broke down the chain of events, explaining what happened. He labeled the attack as “one of the most chaotic hacks that Web3 has ever seen.”

Nomad is a token bridge for cross-chain transfers between Ethereum, Avalanche, Milkomeda, and Moonbeam.

Nomad Funds Drained

Researchers shared a tweet in the ETHSecurity Telegram channel showing multiple transactions of funds leaving the bridge. At first glance, it appeared to be a misconfiguration in token decimals, but samczsun discovered:

“However, after some painful manual digging on the Moonbeam network, I confirmed that while the Moonbeam transaction did bridge out 0.01 WBTC, somehow the Ethereum transaction bridged in 100 WBTC.”

What makes this exploit different is that the transactions were not ‘proved’ and executed directly. “Being able to process a message without proving it first is extremely Not Good,” said samczsun. The coder did some more digging and found a fatal flaw in the ‘Replica’ smart contract initialized during a routine Nomad upgrade.

He added that this was chaotic because the crypto thieves did not need any technical knowledge. They just needed to find a transaction that worked, replace the target address with their own, and rebroadcast it.

“A routine upgrade marked the zero hash as a valid root, which had the effect of allowing messages to be spoofed on Nomad. Attackers abused this to copy/paste transactions and quickly drained the bridge in a frenzied free-for-all,”

TVL to Zero

Nomad has even discovered fraudulent addresses attempting to steal funds returned to the bridge.

According to DefiLlama, Nomad’s total value locked has crashed from $190.38 million to $5,336 over the past few hours.

Nomad is the latest token bridge attack this year following the high-profile exploits of the Ronin Bridge, Wormhole, and Harmony.

SPECIAL OFFER (Sponsored)
Binance Free $100 (Exclusive): Use this link to register and receive $100 free and 10% off fees on Binance Futures first month (terms).

PrimeXBT Special Offer: Use this link to register & enter POTATO50 code to receive up to $7,000 on your deposits.



[ad_2]

Source link

Tags:

More Stories

Autoglyphs Set Fetches Record-Breaking $14.6 Million in Historic NFT Sale

ZachXBT Exposes NFT Project Creator of Fabricating Hack to Buy DeGods and y00t

1 year ago CryptoExpert
Autoglyphs Set Fetches Record-Breaking $14.6 Million in Historic NFT Sale

Punk #7804 Sold for Over $16M in ETH

1 year ago CryptoExpert
NodeMonkes Sees 53% Surge in Floor Price

NodeMonkes Sees 53% Surge in Floor Price

1 year ago CryptoExpert
CryptoPunks NFT Collection Records Another Big Sale

CryptoPunks NFT Collection Records Another Big Sale

1 year ago CryptoExpert
Energy Trading Platform SunContract Introduces First NFT-Powered Solar Panels Marketplace

Energy Trading Platform SunContract Introduces First NFT-Powered Solar Panels Marketplace

1 year ago CryptoExpert
Solana NFT Sales Reached Massive Milestone as SOL Price Stalls at $100

Solana NFT Sales Reached Massive Milestone as SOL Price Stalls at $100

1 year ago CryptoExpert

Leave a Reply

Your email address will not be published. Required fields are marked *

/** * The template for displaying the footer * * Contains the closing of the #content div and all content after. * * @link https://developer.wordpress.org/themes/basics/template-files/#template-partials * * @package CoverNews */ ?>

You may have missed

Best Online Gambling Establishment: An Overview to Enjoying Secure and Fair Gaming

18 hours ago xtw18387208b

18 hours ago xtw18387208b

Finest Online Gambling Enterprises That Approve Bitcoin Deposits

1 day ago xtw18387208b

1 day ago xtw18387208b