DeFi protocol Kyber Network suffers frontend hack, loses $265K
Multi-Chain DeFi Protocol Kyber Network (KNC) clearly A front-end exploit occurred on September 1, resulting in the loss of $265,000 from two whale wallets.
1/ ❗️KyberSwap frontend exploit notice:
Identified and neutralized an exploit in the KyberSwap frontend. Affected users will be compensated. Details in this thread⬇️
— Kyber Network (@KyberNetwork) September 1, 2022
Hackers inject malicious code into KyberSwap frontend
According to Kyber Network, the company’s team “identified malicious code that injected fraudulent authorization into Google Tag Manager (GTM), allowing hackers to transfer user funds to their addresses.”
Kyber went on to say the threat was “neutralized” within two hours, telling users “All safe to use kyber swap function. “
KyberSwap is a multi-chain decentralized exchange (DEX) that allows users to exchange tokens between different blockchains. Kyber revealed that the hack only affected his DEX’s user interface.
The Kyber team has ensured that the affected wallets will be compensated.
4/ 265,000 USD of user funds lost, there are 2 addresses affected and users will be compensated. It appears that the attackers were after the whale’s purse.
— Kyber Network (@KyberNetwork) September 1, 2022
Meanwhile, the team gave 15% of the funds to the hackers if they chose to return the funds. According to the Kyber team, there is no way to cash out funds through a centralized exchange where hackers do not reveal themselves.
7/ We urge all #DeFi A project to thoroughly check front-end code and associated Google Tag Manager (GTM) scripts, as attackers may be targeting multiple sites.Let’s do our best together #DeFi Community to defend against these malicious attacks
— Kyber Network (@KyberNetwork) September 1, 2022
Kyber Network’s KNC token has surged 1.7% to $1.76 over the past 24 hours despite the hack.
DeFi hacking booms
Recent Token Terminal Report clearly Over $4.2 billion has been stolen in the last two years due to DeFi’s lack of security practices.
The Federal Bureau of Investigation also said DeFi protocols were responsible for 97% of the $1.3 billion in crypto assets stolen in the first quarter of this year.
In August alone, multiple hacks in the cryptocurrency space resulted in losses of over $150 million. Hacks range from Solana (SOL) wallet to exploit hacks of Acala, Curve Finance, Nomad Bridge and more.