A hacker drained $15 million from an upcoming project by the Yearn Finance founder Andre Cronje thanks to a smart contract vulnerability as we are about to read in our latest altcoin news.
The hacker drained $15 million after he targeted a smart contract vulnerability in the upcoming project by the yearn finance founder Andre Cronje. However, they returned $8 billion to a wallet owned by Cronje and the “test in prod” approach was expensive so Cronje alleged received threats after the hack. The experimental Defi platform Yearn Finance cultists were hit hard with losses after the unidentified hacker exploited a smart contract vulnerability in Eminence which is an upcoming gaming project by Andre Cronje.
— eminence.finance (@eminencefi) September 28, 2020
The vulnerability allowed them to mint unlimited new tokens and drain about $15 million in the process but they strangely return half of the stolen. Known for his “test in prod” approach which is a meme reference about testing in production on the ETH mainnet instead of the testnet, Cronje teased the project’s logo and what followed was a hallmark move. The lack of information about the project didn’t stop people from rushing in as they purchased more than $15 million worth of the Eminence EMN tokens in less than three hours given the association to Cronje and his reputation.
3/x 5. We posted the first clan "Spartans". And I went to bed.
6. Around ~3AM I was messaged awake to find out a) almost 15m was deposited into the contracts b) the contracts were exploited for the full 15m and c) 8m was sent to my yearn: deployer account.
— Andre Cronje (@AndreCronjeTech) September 29, 2020
But then someone that read the Eminence’s contracts discovered a flaw which was a rogue function that will allow the hacker to mint unlimited EMN tokens, burn an equal amount of the tokens against another cryptocurrency and then sell that to those that are rushing to purchase EMN. But what happened after that was the hacker stole the funds but returned more than $8 million of them to Cronje’s deployer contracts which the developer said will be returned to all those that rushed into buying EMN. It didn’t stop the threats that Cronje received for the losses suffered by the speculators:
“As I am receiving a fair amount of threats, I have asked to yearn treasury to assist with refunding the 8m the hacker sent. The multisig is safer and as such, I feel more comfortable with them having the funds. Funds will be returned to holders pre-hack snapshot.”
I am still building @eminencefi. I love the metaverse and metaconomy.
I am also going to continue deploying test contracts. I have over ~100 deployed contracts, of which probably >half have vulnerabilities.
Please wait for official announcements.
— Andre Cronje (@AndreCronjeTech) September 29, 2020
Cronje said he will continue developing eminence in the upcoming weeks with a disclaimer:
“Let me be clear, do not use random contracts I deploy unless I reference it in a Medium article.”
DC Forecasts is a leader in many crypto news categories, striving for the highest journalistic standards and abiding by a strict set of editorial policies. If you are interested to offer your expertise or contribute to our news website, feel free to contact us at editor@dcforecasts.com
Discussion about this post