Recent Updates
14:00
Peter Thiel Skeptical About Bitcoin's Future Price Surge Despite ETF Boost
13:00
IRS Finalizes Crypto Broker Reporting Rules, Excludes Decentralized Exchanges
12:00
Binance Faces Ongoing SEC Claims as Court Rejects Dismissal of Key Charges
10:52
Latest on Bitcoin and Cryptocurrencies - June 29
23:00
Bitcoin Put-Call Ratio Turns Pessimistic Ahead of Friday's Quarterly Expiry
22:30
European Union Enforces Crypto Law MiCA
21:30
Nostra CEO Steps Down 11 Days After Token Airdrop with No Vesting Periods
Crypto:
30443
Bitcoin:
$61.106
% 0.83
BTC Dominance:
%52.9
% 0.03
Market Cap:
$2.24 T
% 2.03
Fear & Greed:
47 / 100
Bitcoin:
$ 61.106
BTC Dominance:
% 52.9
Market Cap:
$2.24 T
Crypto News, News

Ethereum’s Loopring Hacked, Guardian System Breached

Deniz
Update Date: 10 June 2024 09:19:13
SUBSCRIBE: Youtube Google News
Loopring
10
Jun

Originally revealed on Sunday, Loopring, the zkEVM protocol developed on Ethereum with a website billing its smart wallet application as “Ethereum’s most secure wallet,” suffered a security compromise connected to its “Guardian” two-factor authentication system.

Users of the Guardian service can choose to designate wallets of trustworthy people or businesses to help with security activities such as lock-in of a compromised wallet or restoration of one should the seed phrase disappear. Loopring revealed in its release that a hacker broke through company’s own Official Guardian system to start recovery on wallets using that one guardian without the users’ authorization. According to company’s website, wallets that used multiple guardians or another third-party guardian were shielded from the vulnerability, as more than 50% of guardians are required to start transactions.

Loopring’s 2FA Compromised, $5M Stolen

Loopring also revealed two wallet addresses identified by the protocol allegedly engaged in the security violation. Blockchain records reveal one wallet was able to empty the impacted wallets of around $5 million worth of tokens.

It Might Interest You: Arbitrum’s $215M Gaming Catalyst Program Approved

“We are working closely with Mist security professionals to ascertain the source of the compromise of our 2FA system. We have momentarily stopped Guardian-related and 2FA-related activities in order to safeguard our users. After this action, the compromise stopped,” the protocol said in its X statement. The block couldn’t loop right away for comments.

Loopring has asked that anyone with further knowledge about the attack forward it to the protocol and mentioned that it’s working with law enforcement to track the offender.

READ:  ZKfair (ZKF) is on Launchpool Bitget Exchange!

Although the attack probably caught the team off guard, Loopring’s risk disclosure statement points to a breach of its Guardian system as a possible attack path and advises users to find at least three guardians. “We will automatically add the Loopring Official Guardian service to your wallet after it is generated. Loopring Official Guardian is a centralized service, so hackers could target and control it.” company’s website says.

Rate this post

Leave a Reply

Your email address will not be published. Required fields are marked *