{"id":11576,"date":"2022-07-11T12:33:40","date_gmt":"2022-07-11T12:33:40","guid":{"rendered":"https:\/\/bitcoinwisdom.com\/?p=11576"},"modified":"2022-07-11T12:33:44","modified_gmt":"2022-07-11T12:33:44","slug":"hackers-exploit-nft-platform-omni","status":"publish","type":"post","link":"https:\/\/bitcoinwisdom.com\/sv\/hackers-exploit-nft-platform-omni\/","title":{"rendered":"$1.4M I ETH f\u00f6rlorade efter att hackare utnyttjade NFT-plattformen OMNI"},"content":{"rendered":"<ul class=\"wp-block-list\"><li><strong>Ungef\u00e4r 1 300 ETH ($1,4 miljoner) gick f\u00f6rlorade efter att angripare utnyttjade OMNI<\/strong><\/li><li><strong>Projektet, som fortfarande \u00e4r i BETA-fasen,<\/strong><strong> har blivit avst\u00e4ngd<\/strong><\/li><\/ul>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<p>P\u00e5 s\u00f6ndagen attackerades NFT-finansieringsplattformen OMNI, vilket ledde till en f\u00f6rlust p\u00e5 1 300 Ether (ETH), v\u00e4rd cirka $1,4 miljoner vid tiden f\u00f6r exploateringen.\u00a0<\/p>\n\n\n\n<p>OMNI, som l\u00e5nar ut kryptovalutor i utbyte mot NFT-insats, <a href=\"https:\/\/twitter.com\/peckshield\/status\/1546096506159058947\" class=\"ek-link\" rel=\"nofollow noopener\" target=\"_blank\">f\u00f6rlorat medlen<\/a> efter ond tro NFT-insats fr\u00e5n Doodle-samlingen. Angriparen deponerade f\u00f6rst Doodles som s\u00e4kerhet f\u00f6r att l\u00e5na ut inpackad ETH (wETH). Efter att ha s\u00e4krat l\u00e5net drog de tillbaka alla doodles utom en, vilket resulterade i en \u00e5teruppringningsfunktion som annullerade skulden efter \u00e5terintr\u00e4despunkten. Detta gjorde den l\u00e5nade ETH till en os\u00e4kra skuld som angriparen inte var skyldig att betala.<\/p>\n\n\n\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\"><div class=\"wp-block-embed__wrapper\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\"><p lang=\"en\" dir=\"ltr\">2\/ Den s\u00e5rbara koden visas nedan. Under \u00e5terintr\u00e4det anv\u00e4nde angriparen NFT f\u00f6r att l\u00e5na ETH. Och sedan har skulden rensats efter \u00e5terintr\u00e4despunkten, vilket g\u00f6r den l\u00e5nade ETH till en os\u00e4kra skuld som angriparen inte beh\u00f6ver betala. <a href=\"https:\/\/t.co\/TxdNvIFr0q\" rel=\"nofollow\">pic.twitter.com\/TxdNvIFr0q<\/a><\/p>\u2014 BlockSec (@BlockSecTeam) <a href=\"https:\/\/twitter.com\/BlockSecTeam\/status\/1546141467537981441?ref_src=twsrc%5Etfw\" rel=\"nofollow noopener\" target=\"_blank\">10 juli 2022<\/a><\/blockquote><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n<\/div><\/figure>\n\n\n\n<p>N\u00e4r angriparen v\u00e4l var klar med dessa tv\u00e5 steg, r\u00e4ckte den enda Doodle som fanns kvar p\u00e5 plattformen inte l\u00e4ngre f\u00f6r att t\u00e4cka den uppkomna skulden. Systemet likviderade positionen, vilket l\u00e4mnade den \u00e5terst\u00e5ende Doodle i h\u00e4nderna p\u00e5 angriparen ocks\u00e5.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">OMNI-protokollavst\u00e4ngning<\/h2>\n\n\n\n<p>De ansvariga utvecklarna har stoppat NFT-protokollet, som redan var i betastadiet, medan de genomf\u00f6r revisioner och till\u00e4mpar s\u00e4kerhetsuppdateringar. Dessutom avsl\u00f6jade OMNI att hacket inte p\u00e5verkade n\u00e5gra anv\u00e4ndarmedel, vilket indikerar att det stulna WETH var &quot;interna testmedel.&quot;<\/p>\n\n\n\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\"><div class=\"wp-block-embed__wrapper\">\nhttps:\/\/twitter.com\/OMNI_xyz\/status\/1546143829375459332\n<\/div><\/figure>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p>&quot;OMNI testar fortfarande (beta). Inga kundmedel gick f\u00f6rlorade; endast interna testmedel p\u00e5verkades! Vi har avbrutit OMNI-protokollet tills vi slutf\u00f6r utredningen och f\u00e5r allt granskat igen av externa s\u00e4kerhets- och revisionsbyr\u00e5er.\u201d<\/p><cite>stod det<\/cite><\/blockquote>\n\n\n\n<h2 class=\"wp-block-heading\">Ingen m\u00f6jlighet till direkt \u00f6verklagande<\/h2>\n\n\n\n<p>Med \u00f6kande DeFi-attacker, v\u00e4djar attackerade utvecklare idag ofta direkt till hackarna och lovar att acceptera dem som en white-hat-h\u00e4ndelse i utbyte mot att majoriteten eller alla medel \u00e5terl\u00e4mnas. Detta har tidvis g\u00e5tt bra; till exempel \u00e5terbetalade Optimismexploat\u00f6ren majoriteten av pengarna efter att ha s\u00f6kt Vitalik Buterins r\u00e5d.<\/p>\n\n\n\n<p>OMNI fick dock aldrig en chans att \u00f6verklaga, eftersom unders\u00f6kningen av PeckShield avsl\u00f6jar att de \u00e5terintr\u00e4desrelaterade angriparna blandade de stulna medlen via det decentraliserade protokollet TornadoCash, en blandningstj\u00e4nst som f\u00f6rdunklar medlens ursprung. Med hj\u00e4lp av detta tv\u00e4ttade angriparna alla stulna vinster.<\/p>","protected":false},"excerpt":{"rendered":"<p>Ungef\u00e4r 1 300 ETH ($1,4 miljoner) gick f\u00f6rlorade efter att angripare utnyttjade OMNI. Projektet, som fortfarande \u00e4r i BETA-fasen, har avbrutits P\u00e5 s\u00f6ndagen attackerades NFT-finansieringsplattformen OMNI, vilket ledde till en f\u00f6rlust p\u00e5 1 300 Ether (ETH), v\u00e4rd cirka $1,4 miljoner vid tiden f\u00f6r exploateringen. OMNI, som l\u00e5nar ut kryptovalutor i [\u2026]<\/p>","protected":false},"author":21,"featured_media":11587,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_editorskit_title_hidden":false,"_editorskit_reading_time":1,"_editorskit_is_block_options_detached":false,"_editorskit_block_options_position":"{}","_uag_custom_page_level_css":"","footnotes":""},"categories":[12],"tags":[172],"class_list":["post-11576","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-crypto"],"acf":[],"uagb_featured_image_src":{"full":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/07\/OMNI.jpg",1200,675,false],"thumbnail":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/07\/OMNI-500x330.jpg",500,330,true],"medium":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/07\/OMNI-300x169.jpg",300,169,true],"medium_large":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/07\/OMNI-768x432.jpg",640,360,true],"large":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/07\/OMNI-1024x576.jpg",640,360,true],"1536x1536":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/07\/OMNI.jpg",1200,675,false],"2048x2048":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/07\/OMNI.jpg",1200,675,false],"trp-custom-language-flag":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/07\/OMNI-18x10.jpg",18,10,true]},"uagb_author_info":{"display_name":"Parth Dubey","author_link":"https:\/\/bitcoinwisdom.com\/sv\/author\/parth\/"},"uagb_comment_info":0,"uagb_excerpt":"Approximately 1,300 ETH ($1.4 million) were lost after attackers exploited OMNI The project, which is still in the BETA phase, has been suspended On Sunday, NFT finance platform OMNI was attacked, leading to a loss of 1,300 Ether (ETH), worth around $1.4 million at the time of the exploit.\u00a0 OMNI, which lends out cryptocurrencies in&hellip;","_links":{"self":[{"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/posts\/11576","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/users\/21"}],"replies":[{"embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/comments?post=11576"}],"version-history":[{"count":0,"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/posts\/11576\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/media\/11587"}],"wp:attachment":[{"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/media?parent=11576"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/categories?post=11576"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/sv\/wp-json\/wp\/v2\/tags?post=11576"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}