This Protocol on Coinbase’s Base Was Hacked Just 6 Days After Layer 2 Launch

2023-8-15 13:45

The crypto community has lashed out at the RocketSwap team after a 472 Ethereum (ETH) was taken following a private key compromise.

Coinbase Base drew enthusiasm from many developers and users when it debuted. The Layer 2 protocol launched with over 100 decentralized applications (dApps), but within a week, the projects are becoming a favorite target of scammers.

RocketSwap Disables Comments and Telegram After Exploit 

According to the Web3 security firm Beosin, hackers stole over 472 ETH (approx. $869,000) from the decentralized exchange (DEX) RocketSwap. 

The exploiters accessed the funds via a compromise in the private keys. Then they bridged the tokens to Ethereum through the Stargate bridge. The screenshot below shows the flow of the funds prepared by Beosin.

The flow of the funds stolen from RocketSwap. Source: X (Twitter)

RocketSwap apologized to the users for the loss and explained:

“A brute force hack of the server was detected, and due to the proxy contract used for the farm contract, there were multiple high-risk permissions that led to the transfer of the farm’s assets.”

Furthermore, the project disabled comments on X (Twitter) and Telegram. The team faced heavy criticism from the community for disabling the communication after the exploit. An X (Twitter) user wrote:

“Probably the worst hack reaction I have ever seen. They shut down the Telegram and finish the tweet with:

“We are very sorry for your loss”

Like they don’t have anything to do with it”

The Total Value Locked (TVL) on RocketSwap is down by more than 25% in the past 24 hours. According to DefiLlama, the TVL currently stands at around $2.48 million after the sharp decline.

RocketSwap TVL. Source DefiLlama Irresponsible Security Standards

For Web3 projects, and even for individuals, the storage of private keys is the most essential security measure. Ideally, private keys or secret key phrases should be stored offline to minimize the chances of a compromise.

RocketSwap put the private keys on a server leading to the compromise. The poor security measure has invited widespread criticism from community members.

Community’s reaction to RocketSwap’s security. Source: X (Twitter)

Some other security blunders by RocketSwap have also come to light following the recent exploit. On Aug. 8, a community member shared screenshots of deleted posts from RocketSwap, which showed the team admitting to transferring $69,000 worth of native tokens (RCKT) to scammers.

The scammers, disguised as KuCoin team members, claimed that they wanted to list the RCKT tokens and asked the team to send tokens for liquidity market making. The RocketSwap team realized they had been scammed due to the sell-off after sending the tokens.  

Community member Dashen De Silva believes the team sold tokens for their benefit and used “fabricated narrative as a cover.”

RocketSwap’s deleted post. Source: X (Twitter) A Rug pull?

With two back-to-back incidents within eight days, the community suspects that the RocketSwap team might have conducted a rug pull.

Click here to learn more about rug pull.

An X (Twitter) user, Forgiving, believes that RCKT was a “hard rug.” They questioned the deployer’s change in proxy hours before the exploit. Forgiving wrote:

It was likely a pre-meditated planned rug

The community members are further suspicious as RocketSwap halted the mode of communications. There are also allegations that RocketSwap used to spoof the volumes.

With the RocketSwap exploit, some community members also point fingers at Coinbase Base due to multiple rug pull/hack incidents. 

On Aug. 1, another DEX on the Base network, LeetSwap, lost 340 ETH (approximately $600,000) due to a vulnerable function in the smart contract. Simultaneously, a scammer deployed a meme coin BALD on the Base network and later removed the liquidity, conducting a rug pull of over $23 million.

Following these incidents, a community member wrote:

“Base on-chain summer became base hard rug summer

Bald, leetswap, rocketswap and about 99% of contracts made on base.”

On Aug. 9, Coinbase launched the mainnet of its Layer 2 protocol Base. Within 24 hours, the network recorded over 136,000 daily active users. 

Community reactions. Source: X (Twitter)

Got something to say about the RocketSwap exploit or anything else? Write to us or join the discussion on our Telegram channel. You can also catch us on TikTok, Facebook, or X (Twitter).

For BeInCrypto’s latest Bitcoin (BTC) analysis, click here.

The post This Protocol on Coinbase’s Base Was Hacked Just 6 Days After Layer 2 Launch appeared first on BeInCrypto.

origin »

Bitcoin price in Telegram @btc_price_every_hour

UniLayer (LAYER) на Currencies.ru

$ 0 (+0.00%)
Объем 24H $0
Изменеия 24h: 0.00 %, 7d: 0.00 %
Cегодня L: $0 - H: $0.1105
Капитализация $0 Rank 99999
Цена в час новости $ 0.1823 (-100%)

layer launch days protocol base coinbase hacked

layer launch → Результатов: 126


Фото:

Boba Network deploys first Layer-2 on Moonbeam

Boba Network, a blockchain-powered multichain Layer-2 scaling solution and Hybrid Compute platform, has become the first Layer-2 to go live on the cross-chain smart contracts platform Moonbeam. The milestone comes after Boba Network deployed BobaBeam, the network’s execution layer that has integrated Moonbean-native decentralised exchange (DEX) platform Firefly as its launch partner.

2022-10-12 15:37


Nansen представила ориентированный на криптосообщество Web3-мессенджер

Аналитическая компания Nansen представила Web3-мессенджер со сквозным шифрованием Connect, который ориентирован на участников криптовалютной индустрии.   1/ GM Nansen Explorers 🧭We're thrilled to announce the launch of #NansenConnect, a crypto-native messaging app! We believe it will serve as a foundational piece of the social layer of Web3.

2022-6-16 17:20


Фото:

As Ether’s Ropsten Proof-of-Stake ‘Test Merge’ Goes Live, Uncertainty Looms Over Ethereum L2s

As the major upgrade of the Ethereum blockchain, Ethereum 2.0, is set to launch later this year, uncertainty looms over layer 2 solutions built on the Ethereum blockchain. Ethereum 2.0 is set to be a new version of the blockchain that will enthrone the proof-of-stake (PoS) mechanism of verifying transactions via staking. Ethereum 2.0 (Consensus […]

2022-6-10 19:53


Cross-chain liquidity aggregation app Router Protocol integrates Ethereum and Fantom

Router Protocol, an infrastructure layer enabling communication between blockchains, today announced it has added Ethereum and Fantom to its platform. The community can now transfer funds, swap assets, and with the approaching launch of the Router Software Developer Kit (SDK), build cross-chain dApps across Fantom, Ethereum, and the networks integrated previously including Polygon, Binance Smart […] The post Cross-chain liquidity aggregation app Router Protocol integrates Ethereum and Fantom appeared first on CryptoNinjas.

2022-3-31 23:14


Minecraft makes its Web3 Debut

Minecraft is one of the most successful video games right now, and fans of Minecraft will be happy to learn that a blockchain layer is now available on this game. Microsoft and Minecraft Minecraft is a sandbox-style video game, and since its launch in 2011, it has grown to become one of the most successful […] The post Minecraft makes its Web3 Debut appeared first on NFT News Today.

2022-3-5 11:35


Join the Fleet: Star Atlas Launches its Inaugural On-chain Gameplay Experience

Star Atlas Just now·3 min read Blockchain gaming metaverse on Solana fires up the mainnet with the launch of SCORE, the first playable browser-based game layer enabling players to earn in-game currency ATLAS Fleet of Star Atlas Spaceships Taking Off on a Mission /// Player-owned In-game Assets /// Immersive Blockchain-powered NFT Experience December 16, 2021 […] The post Join the Fleet: Star Atlas Launches its Inaugural On-chain Gameplay Experience appeared first on NFT News Today.

2021-12-18 19:28