DeFi protocol Nexera hacked for $1.5 million via smart contract exploit
Nexera protocol has been exploited for $1.5 million worth of digital assets in another smart contract security incident.
Nexera, a decentralized finance (DeFi) protocol aiming to bridge DeFi with traditional finance, was hacked for $1.5 million worth of Nexera (NXRA) tokens, according to an Aug. 7 X post by Cyvers, that wrote:
“Our system has detected a suspicious transaction involving your proxy contract. An address took ownership of your proxy contract and upgraded it. Shortly after, the address used the withdraw admin function to transfer all the $NXRA tokens.”
While the $1.5 million counts as a relatively small incident, it comes only a day after Ronin Network was exploited for $9.8 million worth of Ether (ETH) tokens, by a suspected white hat hacker, who returned all the lost funds within a few hours.
The hacker is already on the run with the funds
Showcasing the malicious intent of the incident, the hacker is already on the run with the stolen funds.
The hacker has started selling part of the NXRA tokens for Ether, according to Cyvers:
“The address is currently selling all the tokens for $ETH, and some of the funds have already been bridged to the $BNB chain. The total estimated loss is around $1.5 million.”
Hackers often convert their stolen tokens into Ether, to launder the funds via cryptocurrency mixers like Tornado Cash, making the origin of the funds more difficult to trace for cybersecurity firms.
Nexera hacker connected to previous exploits: on investigator
This isn’t the first malicious incident caused by the exploiter, according to onchain data.
The exploiter’s addresses are connected to previous private key compromises as well, according to onchain investigator ZachXBT, who wrote in an Aug. 7 Telegram post:
“Attacker is connected on-chain to recent private key compromise incidents such as SpaceCatch, Concentric Finance, OKX DEX, Serenity Shield, Reach, and many more.”
The exploit occurred nearly three weeks after a hacker stole over $230 million from WazirX, an Indian cryptocurrency exchange, in the second-largest cryptocurrency hack of 2024 so far.
Related News
- California county to regulate Bitcoin ATMs backed by state laws
- Bitcoin 'ghost month' started with a 20% BTC price flash crash — What's next?
- Unizen hacker transfers $2.1M stolen funds to Tornado Cash
- Web3 ecosystem thrives as AI DApps capture 28% market share
- Bitcoin needs 'low $40,000s' for best bull market entry — 10x Research
- Hong Kong virtual bank Mox Bank launches crypto ETF trading
- BlackRock's spot Ether ETF amasses nearly $900M since launch
- Homeland Security leads to man charged over crypto recovery scam
- Bitcoin volatility hits 20-month high, traders hedge against further slump
- 'Something is happening' — Bitcoin hodlers scooped $23B in the past 30 days
© 2024 DeFi.io