DeltaPrime
Contents
DeltaPrime - Rekt
Another day, another private key compromise.
DeltaPrime Blue on Arbitrum suffers $5.98 million loss in private key compromise.
Seems like DeltaPrime's vision of the future doesn't include robust key management.
Whispers of a notorious nation-state hacker group are already circulating through the cryptosphere.
Could the infamous Lazarus Group be behind this precision strike?
While DeltaPrime scrambles to reassure users, questions loom.
Could we be entering a new era of state-sponsored hacks exploiting protocols caught with their pants down?
Credit: Chaofan Shou, DeltaPrime, Hacken, ZachXBT
The DeltaPrime drama unfolded like a well-rehearsed heist movie, with the attacker playing the role of a digital Danny Ocean.
According to first responder, Chaofan Shou, a compromised admin address on Arbitrum was used to upgrade DeltaPrime's proxy contracts to a malicious contract.
Compromised Admin Address: 0x40E4172e595Fb5B3076dC6d0A1a24d885b881Afb
DeltaPrime’s Compromised Proxy Admin Address:
0xd550cfeA0BFFDC81B2dEe7B6d915D9D9e31d83A2
This nefarious upgrade allowed the attacker to artificially inflate their own deposit amounts across all pools. Talk about cooking the books.
DeltaPrime, in a stunning …
Another day, another private key compromise.
DeltaPrime Blue on Arbitrum suffers $5.98 million loss in private key compromise.
Seems like DeltaPrime's vision of the future doesn't include robust key management.
Whispers of a notorious nation-state hacker group are already circulating through the cryptosphere.
Could the infamous Lazarus Group be behind this precision strike?
While DeltaPrime scrambles to reassure users, questions loom.
Could we be entering a new era of state-sponsored hacks exploiting protocols caught with their pants down?
Credit: Chaofan Shou, DeltaPrime, Hacken, ZachXBT
The DeltaPrime drama unfolded like a well-rehearsed heist movie, with the attacker playing the role of a digital Danny Ocean.
According to first responder, Chaofan Shou, a compromised admin address on Arbitrum was used to upgrade DeltaPrime's proxy contracts to a malicious contract.
Compromised Admin Address: 0x40E4172e595Fb5B3076dC6d0A1a24d885b881Afb
DeltaPrime’s Compromised Proxy Admin Address:
0xd550cfeA0BFFDC81B2dEe7B6d915D9D9e31d83A2
This nefarious upgrade allowed the attacker to artificially inflate their own deposit amounts across all pools. Talk about cooking the books.
DeltaPrime, in a stunning …
IoC
2e6748e92e4f833d3ea3c2aa7d11e74aa502e2cfcab8398dc2056a83a1b7caae
3C5c2F4bCeC51a36494682f91Dbc6cA7c63B514C
d550cfeA0BFFDC81B2dEe7B6d915D9D9e31d83A2
28a9b62fbfc375ebb3f5321d80baac9c2a225a6ec2f140cbfae5bff95fc80b1e
D4CA224a176A59ed1a346FA86C3e921e01659E73
40E4172e595Fb5B3076dC6d0A1a24d885b881Afb
eb034ecfa6b1eaa95bc659883eff8a106fd5d7262da54848525f656597f55d3f
2B8C610F3fC6F883817637d15514293565C3d08A
d5E8f691756c3d7b86FD8A89A06497D38D362540
0bebeb5679115f143772cfd97359bbcc393d46b3
8FE3842e0B7472a57f2A2D56cF6bCe08517A1De0
5CdE36c23f0909960BA4D6E8713257C6191f8C35
3C5c2F4bCeC51a36494682f91Dbc6cA7c63B514C
d550cfeA0BFFDC81B2dEe7B6d915D9D9e31d83A2
28a9b62fbfc375ebb3f5321d80baac9c2a225a6ec2f140cbfae5bff95fc80b1e
D4CA224a176A59ed1a346FA86C3e921e01659E73
40E4172e595Fb5B3076dC6d0A1a24d885b881Afb
eb034ecfa6b1eaa95bc659883eff8a106fd5d7262da54848525f656597f55d3f
2B8C610F3fC6F883817637d15514293565C3d08A
d5E8f691756c3d7b86FD8A89A06497D38D362540
0bebeb5679115f143772cfd97359bbcc393d46b3
8FE3842e0B7472a57f2A2D56cF6bCe08517A1De0
5CdE36c23f0909960BA4D6E8713257C6191f8C35