Open in app

Sign In

Write

Sign In

QuillAudits - Web3 Security šŸ›”ļø
QuillAudits - Web3 Security šŸ›”ļø

620 Followers

Home

About

Published in Coinmonks

Ā·1 day ago

Decoding DKP Tokenā€˜s Price Manipulation Exploit | QuillAudits

Summary: On the 8th of February, the DKP token on the BNB chain was attacked. The attacker manipulated the price of the DKP token using the flash loan technique and sold it for a total profit of $80K. On-Chain Details: Attacker’s Address: 0xF38B677fa6E9E51338D0c32FD21afe43406E06Df Attacker’s Contract: 0xf34ad6cea329f62f4516ffe00317ab09d934fba3 DKP Token: 0xd06fa1ba7c80f8e113c2dc669a23a9524775cf19 DKP Pancake Pair: 0xBE654FA75bAD4Fd82D3611391fDa6628bB000CC7

Web3

4 min read

Decoding DKP Tokenā€˜s $80K Exploit | QuillAudits
Decoding DKP Tokenā€˜s $80K Exploit | QuillAudits
Web3

4 min read


Mar 1

Decoding SwapX Protocol’s $1 Million Exploit | QuillAudits

Summary: On February 27th, 2023, the SwapX Project was exploited on the BNB Chain due to a lack of access control. The attacker exploited the vulnerability to manipulate the price of the DND tokens, resulting in a total loss of $1 million of users' funds. Vulnerability Analysis & Impact: The Root Cause: The contract was unverified, and after…

Web3

3 min read

Decoding SwapX $1 Million Exploit | QuillAudits
Decoding SwapX $1 Million Exploit | QuillAudits
Web3

3 min read


Feb 14

Decoding dForce Protocol ā€œRead Only Reentrancyā€ Exploit | QuillAudits

Summary: On February 10, dForce experienced an attack that resulted in a total loss of $3.64 million across both Optimism and Arbitrum Chain. It was a price manipulation attack due to the ā€œRead-only Reentrancyā€ vulnerability. Around $1.73M was lost on Optimism and $1.91M on Arbitrum. Introduction to dForce Protocol: dForce promotes the development of a…

Web3

4 min read

Decoding dForce Protocol ā€œRead Only Reentrancyā€ Exploit | QuillAudits
Decoding dForce Protocol ā€œRead Only Reentrancyā€ Exploit | QuillAudits
Web3

4 min read


Feb 8

Decoding Orion Protocol’s Reentrancy Exploit | QuillAudits

Summary On February 2, 2023, the Orion Protocol was exploited on Ethereum and the BNB Chain. The attack was caused by a reentrancy vulnerability in the swap function of the contract, which resulted in an asset loss of almost $3 million, i.e., $191,030 on BSC and $2,836,206 on the Ethereum Chain. Introduction to Orion Protocol …

Web3 Security

4 min read

Decoding Orion Protocol’s Reentrancy Exploit | QuillAudits
Decoding Orion Protocol’s Reentrancy Exploit | QuillAudits
Web3 Security

4 min read


Feb 3

Decoding BONq DAO’s $120 Million Exploit | QuillAudits

Summary: On February 1, 2023, BONq DAO was exploited with an oracle attack. The attackers completely changed the price of AllianceBlock’s $ALBT tokens via an oracle manipulation technique, which led to estimated losses of about $120 million. BONq DAO: Bonq is a non-custodial, decentralized, and over-collateralized lending platform that allows users to borrow…

Web3 Security

4 min read

Decoding BONq DAO’s $120 Million Exploit | QuillAudits
Decoding BONq DAO’s $120 Million Exploit | QuillAudits
Web3 Security

4 min read


Jan 31

Dogechain’s ecological DoglandsDC project swept ~$204K in Rug Pull

In brief⚔

Hashingbits

3 min read

Dogechain’s ecological DoglandsDC project swept ~$204K in Rug Pull
Dogechain’s ecological DoglandsDC project swept ~$204K in Rug Pull
Hashingbits

3 min read


Jan 29

Decoding Thoreum Finance Exploit | QuillAudits

Summary: On January 18, 2023, Thoreum Finance on BNB chain was exploited. The cause of the attack was a bug in the transfer function of the contract. The exploit caused the loss of approximately 2261 BNB ($680K) from the protocol. Then, the attacker used Tornado Cash to transfer the stolen money. About Thoreum Protocol: …

Web3

4 min read

Decoding Thoreum Finance Exploit | QuillAudits
Decoding Thoreum Finance Exploit | QuillAudits
Web3

4 min read


Jan 20

Decoding OMNI Real-Estate Token Exploit | QuillAudit

Summary On January 17, 2023, the OMNI Real Estate Project (ORT Token) on the BNB chain was hacked. The main cause of the attack was insufficient checks in their staking pool contract. The attacker stole around 236 BNB, i.e., roughly $70K, at the time of the attack. Introduction to OMNI Group and ORT Token: Omni Group offers a…

Web3

4 min read

Decoding OMNI Real-Estate Token Exploit | QuillAudit
Decoding OMNI Real-Estate Token Exploit | QuillAudit
Web3

4 min read


Jan 16

Mycelium ETH/USDT pool suffered a loss of ~300KšŸ’°

In brief⚔

Smart Contract Security

3 min read

Mycelium ETH/USDT pool suffered a loss of ~300KšŸ’°
Mycelium ETH/USDT pool suffered a loss of ~300KšŸ’°
Smart Contract Security

3 min read


Jan 16

Decoding ROE Finance’s Flash Loan Exploit | QuillAudits

Summary: On the 11th of January, 2023, ROE Finance was attacked in Ethereum Chain. The attacker used Flash loans to create an imbalance in one of the pools and manipulate the price. Then he drained the balance of the victim pool leading to the loss of $80K. Introduction to ROE Finance: The ROE product ecosystem…

Flash Loan Attack

4 min read

Decoding ROE Finance’s Flash Loan Exploit | QuillAudits
Decoding ROE Finance’s Flash Loan Exploit | QuillAudits
Flash Loan Attack

4 min read

QuillAudits - Web3 Security šŸ›”ļø

QuillAudits - Web3 Security šŸ›”ļø

620 Followers

Smart Contract Auditing Experts , Making web3 a safer place . audits@quillhash.com

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech