“Hackers took advantage of a vulnerability in the uniBTC synthetic token, thanks to which they managed to steal $2 million worth of assets from the Bedrock bitcoin restaking protocol. ⚠️Important Announcement from the Bedrock Team We want to inform you that the Bedrock team is aware of a security exploit involving uniBTC. The issue has been handled and funds are SAFU. We want to reassure everyone that […]”, — write: businessua.com.ua
Hackers exploited a vulnerability in the synthetic token uniBTC, thanks to which they managed to steal $2 million worth of assets from the Bitcoin restaking protocol Bedrock.
⚠️Important Announcement from the Bedrock Team
We want to inform you that the Bedrock team is aware of a security exploit involving uniBTC. The issue has been handled and funds are SAFU.
We want to reassure everyone that the underlying wrapped BTCs and BTCs in reserves are…
— Bedrock | Bitcoin Retaking LIVE (@Bedrock_DeFi) September 27, 2024
On September 27, the platform’s team announced that it had discovered and fixed the problem, assuring that users’ funds are safe, including “wrapped” and base bitcoins.
The protocol has temporarily suspended interactions with the uniBTC contract. According to Bedrock representatives, DEX liquidity pools were hit.
“The main reason [вразливості] detected, and we are taking measures to eliminate it. A comprehensive recovery plan is being finalized and will be published soon along with the incident report,” the statement said.
Bedrock is working with audit groups and white-collar hackers to recover lost funds. The company also promised to provide confirmation of reserves once the investigation is complete.
“At this time, no further action is required from our community. Rest assured that all uniBTC stored by users are safe,” the developers emphasized.
Earlier, the team of trading Telegram bot Banana Gun confirmed its intention to compensate affected users for $3 million stolen as a result of the attack.
We will remind, in July-September, cryptocurrency companies faced 34 episodes of hacking and fraud, the losses from which amounted to more than $413 million, according to Immunefi.
The source