{"id":31424,"date":"2024-10-26T13:00:49","date_gmt":"2024-10-26T10:00:49","guid":{"rendered":"https:\/\/coinengineer.net\/blog\/?p=31424"},"modified":"2024-10-26T12:52:26","modified_gmt":"2024-10-26T09:52:26","slug":"1-million-attack-on-base-blockchain","status":"publish","type":"post","link":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/","title":{"rendered":"$1 Million Attack on Base Blockchain!"},"content":{"rendered":"<p>Hack incidents in the DeFi ecosystem show no signs of stopping. In a recent attack on the Base blockchain, approximately $1 million in funds was stolen. This latest security breach resulted from an exploit of unverified lending contracts on the <a href=\"https:\/\/coinengineer.net\/blog\/surprising-event-about-jump-crypto-and-terraform-labs\/\"><strong>Base blockchain<\/strong><\/a>, allowing attackers to manipulate the system and steal around $1 million. Such attacks highlight the need for stronger security measures, particularly against price manipulation on decentralized platforms.<\/p>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_71 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 eztoc-toggle-hide-by-default' ><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#Background_of_the_Attack\" title=\"Background of the Attack\">Background of the Attack<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#Price_Manipulations\" title=\"Price Manipulations\">Price Manipulations<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#Expert_Recommendations_for_DeFi\" title=\"Expert Recommendations for DeFi\">Expert Recommendations for DeFi<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#Security_Protocols\" title=\"Security Protocols\">Security Protocols<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#The_Need_for_Security\" title=\"The Need for Security\">The Need for Security<\/a><\/li><\/ul><\/nav><\/div>\n<h3><span class=\"ez-toc-section\" id=\"Background_of_the_Attack\"><\/span><strong>Background of the Attack<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>On October 25, 2023, blockchain security firm Cyvers Alerts reported an attack on the Base blockchain. This incident occurred through a vulnerability in a smart contract related to Wrapped Ether (WETH). The attackers exploited weaknesses in oracle services to manipulate prices, stealing approximately $993,534 in funds. They transferred a significant portion of the funds to the Ethereum network and then funneled $202,549 through the privacy-focused Tornado Cash platform, later stealing an additional $455,127 using the same method.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Price_Manipulations\"><\/span><strong>Price Manipulations<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>The primary method used in this attack involved exposing a weak oracle to price fluctuations. Oracles, tools used to provide external data to the blockchain, are commonly used in decentralized finance (DeFi) projects. When oracles rely on low-liquidity and unreliable trading pairs, they become vulnerable to price manipulation. Cyvers&#8217; senior SOC leader, Hakan \u00dcnal, explained that the oracle in question depended on a pair with limited liquidity, which made manipulation easier.<\/p>\n<p>Oracle manipulations pose a critical threat in the DeFi ecosystem. Ensuring the secure verification of oracles is essential to protect users&#8217; funds. This attack underscores the need for DeFi projects to strengthen and secure their oracle solutions.<\/p>\n<h2><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-139541 aligncenter\" src=\"https:\/\/coinmuhendisi.com\/blog\/wp-content\/uploads\/2024\/10\/2-1.jpeg\" alt=\"uzmanlar\" width=\"659\" height=\"377\" \/><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"Expert_Recommendations_for_DeFi\"><\/span><strong>Expert Recommendations for DeFi<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Cyvers noted that such attacks occur due to the use of unverified lending contracts. To prevent these attacks, they recommend using oracles with higher liquidity. Additionally, enhancing oracle diversity and security is an important step toward preventing similar price manipulations. The reliability of oracles will be a crucial factor for the future growth of DeFi platforms.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Security_Protocols\"><\/span><strong>Security Protocols<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>This attack highlights the need for DeFi platforms to address security vulnerabilities. Strengthening oracle reliability and verifying lending contracts are critical steps to prevent such attacks. Unverified lending contracts weaken the system&#8217;s security, posing a significant risk to user funds in the DeFi ecosystem.<\/p>\n<p>While the attacker\u2019s identity remains unknown, the responsibility falls on organizations managing unverified lending contracts and those making insecure oracle selections. This attack emphasizes that DeFi projects need to adopt not only a growth-oriented but also a security-focused approach. Projects offering more reliable and diversified oracle solutions, such as Chainlink, can play an essential role in preventing such attacks.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"The_Need_for_Security\"><\/span><strong>The Need for Security<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>To ensure continued growth in the DeFi space, proactive measures must be taken against security vulnerabilities. Protecting user funds, correctly configuring oracles, and implementing robust security protocols are vital for the sustainability of DeFi projects. This incident serves as a reminder that enhanced security measures are crucial for the continued development of DeFi.<\/p>\n<hr \/>\n<p><em>You can join our\u00a0<strong><a href=\"https:\/\/t.me\/coinengineernews\" target=\"_blank\" rel=\"nofollow noopener\">Telegram<\/a>\u00a0<\/strong>channel to not miss the\u00a0<strong><a title=\"News\" href=\"https:\/\/coinengineer.net\/blog\/news\/\" data-internallinksmanager029f6b8e52c=\"7\">news<\/a>\u00a0<\/strong>and stay informed about the crypto world.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hack incidents in the DeFi ecosystem show no signs of stopping. In a recent attack on the Base blockchain, approximately $1 million in funds was stolen. This latest security breach resulted from an exploit of unverified lending contracts on the Base blockchain, allowing attackers to manipulate the system and steal around $1 million. Such attacks<\/p>\n","protected":false},"author":23,"featured_media":31425,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[966,1204,93,9124],"class_list":["post-31424","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-crypto-news","tag-base-blockchain","tag-cyvers","tag-defi","tag-wrapped-ether"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.6 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>$1 Million Attack on Base Blockchain! - Coin Engineer<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"$1 Million Attack on Base Blockchain! - Coin Engineer\" \/>\n<meta property=\"og:description\" content=\"Hack incidents in the DeFi ecosystem show no signs of stopping. In a recent attack on the Base blockchain, approximately $1 million in funds was stolen. This latest security breach resulted from an exploit of unverified lending contracts on the Base blockchain, allowing attackers to manipulate the system and steal around $1 million. Such attacks\" \/>\n<meta property=\"og:url\" content=\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/\" \/>\n<meta property=\"og:site_name\" content=\"Coin Engineer\" \/>\n<meta property=\"article:published_time\" content=\"2024-10-26T10:00:49+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-10-26T09:52:26+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2024\/10\/metaplanet-13-1024x576.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"576\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Orhan\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Orhan\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/\",\"url\":\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/\",\"name\":\"$1 Million Attack on Base Blockchain! - Coin Engineer\",\"isPartOf\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2024\/10\/metaplanet-13.png\",\"datePublished\":\"2024-10-26T10:00:49+00:00\",\"dateModified\":\"2024-10-26T09:52:26+00:00\",\"author\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/8deaf13c6481161ff7036db9cb61048a\"},\"breadcrumb\":{\"@id\":\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#primaryimage\",\"url\":\"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2024\/10\/metaplanet-13.png\",\"contentUrl\":\"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2024\/10\/metaplanet-13.png\",\"width\":2560,\"height\":1440,\"caption\":\"Base Blockchain\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/coinengineer.net\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"$1 Million Attack on Base Blockchain!\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/coinengineer.net\/blog\/#website\",\"url\":\"https:\/\/coinengineer.net\/blog\/\",\"name\":\"Coin Engineer\",\"description\":\"Btc, Coins, Pre-Sale, DeFi, NFT\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/coinengineer.net\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/8deaf13c6481161ff7036db9cb61048a\",\"name\":\"Orhan\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/026a5fad95600e925285b27ca7eb5a25d827bf9dc09ad2289b927a0eac46665d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/026a5fad95600e925285b27ca7eb5a25d827bf9dc09ad2289b927a0eac46665d?s=96&d=mm&r=g\",\"caption\":\"Orhan\"},\"url\":\"https:\/\/coinengineer.net\/blog\/author\/ceorhan\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"$1 Million Attack on Base Blockchain! - Coin Engineer","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/","og_locale":"en_US","og_type":"article","og_title":"$1 Million Attack on Base Blockchain! - Coin Engineer","og_description":"Hack incidents in the DeFi ecosystem show no signs of stopping. In a recent attack on the Base blockchain, approximately $1 million in funds was stolen. This latest security breach resulted from an exploit of unverified lending contracts on the Base blockchain, allowing attackers to manipulate the system and steal around $1 million. Such attacks","og_url":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/","og_site_name":"Coin Engineer","article_published_time":"2024-10-26T10:00:49+00:00","article_modified_time":"2024-10-26T09:52:26+00:00","og_image":[{"width":1024,"height":576,"url":"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2024\/10\/metaplanet-13-1024x576.png","type":"image\/png"}],"author":"Orhan","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Orhan","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/","url":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/","name":"$1 Million Attack on Base Blockchain! - Coin Engineer","isPartOf":{"@id":"https:\/\/coinengineer.net\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#primaryimage"},"image":{"@id":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#primaryimage"},"thumbnailUrl":"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2024\/10\/metaplanet-13.png","datePublished":"2024-10-26T10:00:49+00:00","dateModified":"2024-10-26T09:52:26+00:00","author":{"@id":"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/8deaf13c6481161ff7036db9cb61048a"},"breadcrumb":{"@id":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#primaryimage","url":"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2024\/10\/metaplanet-13.png","contentUrl":"https:\/\/coinengineer.net\/blog\/wp-content\/uploads\/2024\/10\/metaplanet-13.png","width":2560,"height":1440,"caption":"Base Blockchain"},{"@type":"BreadcrumbList","@id":"https:\/\/coinengineer.net\/blog\/1-million-attack-on-base-blockchain\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/coinengineer.net\/blog\/"},{"@type":"ListItem","position":2,"name":"$1 Million Attack on Base Blockchain!"}]},{"@type":"WebSite","@id":"https:\/\/coinengineer.net\/blog\/#website","url":"https:\/\/coinengineer.net\/blog\/","name":"Coin Engineer","description":"Btc, Coins, Pre-Sale, DeFi, NFT","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/coinengineer.net\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/8deaf13c6481161ff7036db9cb61048a","name":"Orhan","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/coinengineer.net\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/026a5fad95600e925285b27ca7eb5a25d827bf9dc09ad2289b927a0eac46665d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/026a5fad95600e925285b27ca7eb5a25d827bf9dc09ad2289b927a0eac46665d?s=96&d=mm&r=g","caption":"Orhan"},"url":"https:\/\/coinengineer.net\/blog\/author\/ceorhan\/"}]}},"_links":{"self":[{"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/posts\/31424","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/users\/23"}],"replies":[{"embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/comments?post=31424"}],"version-history":[{"count":2,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/posts\/31424\/revisions"}],"predecessor-version":[{"id":31432,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/posts\/31424\/revisions\/31432"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/media\/31425"}],"wp:attachment":[{"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/media?parent=31424"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/categories?post=31424"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinengineer.net\/blog\/wp-json\/wp\/v2\/tags?post=31424"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}