Radiant Capital suffered the most complex hacker attack in history, with a loss of $50 million! The FBI intervened to investigate!
On October 18, the well-known multi-chain lending protocol Radiant Capital recently published an article disclosing a highly complex and extremely hidden security vulnerability incident, resulting in a loss of $50 million. This attack method is unprecedented. Hackers used advanced malware to cleverly break into the hardware wallets of multiple developers. These devices actually displayed legitimate transaction data on the front end of the Safe wallet, but the background was simultaneously signing and executing tampered transactions!
The incident occurred on October 16. Radiant Capital was successfully exploited by hackers in the multi-signature emission adjustment process. The attacker targeted the normal operation process of the DAO. Although the contributors strictly abided by industry standards, used Tenderly to simulate and verify each transaction, and were repeatedly reviewed by multiple developers, this hacker attack completely bypassed the front-end review of Gnosis Safe and Tenderly, which was shocking.
External security teams Security Alliance and HypernativeLabs have confirmed this fact. Faced with this unprecedented crisis, Radiant Capital quickly cooperated with Seal911 and Hypernative to strengthen multi-signature control. At the same time, the Federal Bureau of Investigation (FBI) and zeroShadow also fully intervened to actively track down the stolen funds and strive to freeze the hacker's assets.
This vulnerability incident shocked the entire DeFi community, and Radiant Capital also suspended the loan market. The initial estimated loss may reach 58 million US dollars. This incident reminds all project parties that even with the most stringent security measures, there may still be attack risks that cannot be ignored!
Follow Lao Lin to grasp the most cutting-edge dynamics of DeFi, and take you through the storm and move forward steadily!