Cointime

Download App
iOS & Android

Raydium Lost $4,4 Million Due to Hacker Attack

Validated Individual Expert

Raydium is a Solana-based Automated Market Maker (AMM). Raydium gives users the opportunity to swap and trade, provide liquidity and also to stake and earn the native Raydium token — RAY. Just like other similar platforms, Raydium allows any third-party project to be listed with it. At the time of events TVL on the platform was over $30 million.

On December 16, Raydium announced on Twitter that its platform had been attacked by hackers. There were no details except for the hacker’s address.

A few minutes before Raydium’s post, the crypto investigator ZachXBT reported that about $2 million stolen from Raydium liquidity pools had already been transferred to ETH. This tweet was a response to the suspicions from swap aggregator PRISM that there was an attack on Raydium.

Two days later, Raydium published an analysis of the attack on their liquidity pools.

In short, the hackers gained access to the Pool Owner (Admin) account, and misused the protocols’ fee withdrawal functions to drain the liquidity pools. They had managed to increase the amount of fees too. The attack affected 8 most concentrated out of more than 50 constant product liquidity pools on Raydium. Raydium claimed that all other pools and funds were not affected by the exploit.

Originally reported to be $2 million, the final estimate of the stolen funds was confirmed by Raydium to be $4.4 million. The losses were tracked, and a detailed list of transactions can be accessed here.

The response to the hack included: revocations of the compromised admin account rights and placing a new admin account on a hardware wallet. Also, unnecessary rights were removed or limited on admin accounts

Before the hacker attack, the price of the RAY token fluctuated around $0.19. After the attack, the price dropped to $0.14 and continues to fluctuate at that level.

RAY token price chart. Source: Coinmarketcap

In the following from Raydium’s tweet on December 20, it was not possible to identify the hacker. Raydium also announced an increase in the bug bounty reward.

In the last two weeks, Raydium has been developing a reimbursement plan. For this purpose, a large-scale discussion washeld, during which a vote was taken. The vote on two points ended almost unanimously.

Following this, on January 4, Raydium published a plan to eliminate the consequences of the exploit and the sequence of steps to be taken. The plan consists of two phases. The first phase is now live on the website and will last two months. During the first phase, users who were individual liquidity providers will be able to apply for a refund.

“Following the initial proposal for the remediation of funds, assets in the treasury have been used to obtain the vast majority of assets that were affected during the exploit. The next step is to use the obtained assets to restore losses to users that had liquidity positions in affected pools at the time of the incident.”

And again, another hacker added problems to another crypto company and rode off into the sunset with several million in hand. It is unlikely that this will ever end, so we continue to observe.

Comments

All Comments

Recommended for you

  • Bitcoin Layer 2 Project Bitlayer Launches $50 Million Ecosystem Incentive Program

    Bitlayer, a Bitcoin Layer2 infrastructure project based on the BitVM paradigm, announced the launch of a $50 million ecological incentive plan to promote the development of its mainnet ecosystem. The first phase of the incentive program, named "Ready Player One," will begin registration at 09:00 UTC on March 29th, 2024 and end at 09:00 UTC on April 29th, 2024, and will officially start after the Bitlayer mainnet is launched. Specific rules and reward allocation guidelines for the event will be disclosed in subsequent announcements. Through the "Ready Player One" and other ecological incentive plans, Bitlayer aims to accelerate ecosystem development and incentivize projects to deploy on the Bitlayer mainnet. In addition, Bitlayer promises comprehensive ecosystem support for all projects, including potential foundation and institutional investment, initial liquidity support, comprehensive product development resources, guidance and investment opportunities from top incubators, support from the Bitcoin community and OGs, ecosystem cooperation, and co-creation.

  • Stablecoin protocol Ethena on BNBChain has been hacked

    The stablecoin protocol Ethena on BNBChain has been hacked, causing a loss of 480 BNB, worth about $290,000, as monitored by PeckShieldAlert.

  • Singapore-based Bitcoin Layer2 Project BEVM Raises Tens of Millions in Seed and Series A Funding

    Singapore-based Bitcoin Layer2 project, BEVM, has completed its seed round and part of its Series A round, raising tens of millions of USD from over 20 investors including RockTree Capital, Waterdrip Capital, and ViaBTC Capital. The project's Series A valuation has reached $200m and aims to accelerate its international development and roll-out. BEVM is an EVM-compatible Bitcoin Layer2 network built on Taproot Consensus, which uses $BTC as gas and aims to bring 10% of $BTC into its Layer2 network environment. The project's mainnet is scheduled to launch on March 28th and has already implemented decentralized Bitcoin cross-chain custody services through Schnorr Signature, MAST, and Bitcoin SPVs.

  • Ethereum on-chain DEX transaction volume exceeded $2.1 billion yesterday

    According to DeFiLlama data, the trading volume of DEX on the Ethereum blockchain on March 28th was 2.111 billion US dollars, ranking first. The daily trading volume of DEX on the BSC chain was 1.398 billion US dollars, ranking second; the daily trading volume of DEX on the Solana chain was 1.097 billion US dollars, ranking third.

  • Taiwan’s Ministry of Interior has approved the establishment of a cryptocurrency industry association

    Taiwan's Ministry of the Interior has approved the application of the local cryptocurrency industry to establish an industry association. The local cryptocurrency industry working group, which was established last year to prepare for the establishment of the industry association, said that the working group now needs to complete all preparations and officially establish the cryptocurrency industry association by the end of June as required by the government. The working group is currently composed of 22 cryptocurrency companies, including Taiwan's major exchanges such as MaiCoin and BitoPro. The working group pointed out that ACE Exchange has been expelled from the group because the troubled exchange is under investigation by prosecutors for improper behavior by its former executives.

  • Grayscale ETH Trust negative premium rate is 22.77%

    According to ChainCatcher news and Coinglass data, the Grayscale Bitcoin Trust Fund (GBTC) has a premium rate of 0.02%. The Grayscale ETH Trust has a negative premium rate of 22.77%, and the ETC Trust has a negative premium rate of 36.58%.In addition, the Grayscale BCH Trust has a premium rate of 238.13%, the LTC Trust has a premium rate of 380.60%, the SOL Trust has a premium rate of 515.93%, the MANA Trust has a premium rate of 726.65%, the LINK Trust has a premium rate of 713.66%, and the FIL Trust has a premium rate of 3057.89%.

  • Net inflows into spot Bitcoin ETFs reached $179 million on March 28

    Spot on Chain, a blockchain data monitoring platform, posted on social media that the net inflow of spot bitcoin ETF on March 28th reached 179 million US dollars, a decrease of 26.9% compared to the previous trading day. After 54 trading days, the total net inflow accumulated to 12.13 billion US dollars, which is the level before the last fully negative trading week. BlackRock's iShares Bitcoin ETF (IBIT) and Grayscale's GBTC both saw a significant slowdown in daily inflows and outflows on March 28th.

  • Bitcoin spot ETF had a total net inflow of US$179 million yesterday, and the ETF net asset ratio reached 4.25%

    According to SoSoValue data, the Bitcoin spot ETF had a total net inflow of $179 million yesterday (March 28th, US Eastern Time).Yesterday, Grayscale's ETF GBTC had a net outflow of $104 million, and its historical net outflow is $14.77 billion. The Bitcoin spot ETF with the highest net inflow yesterday was BlackRock's ETF IBIT, with a net inflow of approximately $95.12 million, and its historical total net inflow has reached $13.96 billion. The second is Fidelity's ETF FBTC, with a net inflow of approximately $68.09 million yesterday, and its historical total net inflow has reached $7.56 billion.As of now, the total net asset value of Bitcoin spot ETF is $59.1 billion, and the ETF net asset ratio (market value compared to the total market value of Bitcoin) is 4.25%, with a historical total net inflow of $12.12 billion.

  • Ethereum Inscription ETHS rose over 95% in 24H

    CoinGecko data shows that Ethereum Inscription ETHS has risen by 95.9% in the last 24 hours, now reporting at 7.51 USDT. Earlier, Ethereum founder Vitalik released the latest long article "Ethereum has blobs. Where do we go from here?". As a result of this news, the price of Ethereum Inscription ETHS soared.

  • Binance exec sues Nigeria’s National Security Agency over detention

    According to CoinGape, Tigran Gambaryan, a detained executive of Binance, has filed a lawsuit against the National Security Adviser (NSA) and the Economic and Financial Crimes Commission (EFCC) in Nigeria. Local media reported that on March 28th, Tigran Gambaryan sued the National Security Agency, accusing it of violating his basic human rights and seeking five major remedies from the court.He urged the court to approve the return of his passport and to release him immediately after more than three weeks of detention. He also requested a ban on future detention in similar investigations and demanded public apologies from the National Security Agency and the EFCC.In addition, he requested that the court pay the full amount of compensation for the lawsuit.