{"id":2770,"date":"2022-04-28T04:35:00","date_gmt":"2022-04-28T11:35:00","guid":{"rendered":"https:\/\/bitcoinwisdom.com\/?p=2770"},"modified":"2022-04-29T06:37:36","modified_gmt":"2022-04-29T13:37:36","slug":"how-deus-finance-was-exploited-for-13-4-m-usd","status":"publish","type":"post","link":"https:\/\/bitcoinwisdom.com\/tr\/how-deus-finance-was-exploited-for-13-4-m-usd\/","title":{"rendered":"$13.4M i\u00e7in Deus Finance Nas\u0131l Kullan\u0131ld\u0131?"},"content":{"rendered":"<p>Merkezi olmayan finans (DeFi) uygulamas\u0131 Deus Finance, iki ayl\u0131k bir s\u00fcrede ikinci kez kullan\u0131ld\u0131. G\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131na g\u00f6re, sald\u0131rganlar bug\u00fcn Asya&#039;n\u0131n erken saatlerinde $13.4 milyon de\u011ferinde kripto para birimini ele ge\u00e7irmeyi ba\u015fard\u0131lar. <a href=\"https:\/\/twitter.com\/peckshield\/status\/1519530463337250817\" rel=\"noreferrer noopener nofollow\" target=\"_blank\">PeckShield<\/a>. K\u00f6t\u00fcye kullan\u0131m, Fantom A\u011f\u0131&#039;nda meydana geldi. PeckShield&#039;den gelen say\u0131s\u0131z rapordan sonra, Fantom Network&#039;\u00fcn arkas\u0131ndaki ekip istismar\u0131 tespit edip hafifletmeyi ba\u015fard\u0131. Ancak, b\u00fcy\u00fck miktarda kripto para biriminin kullan\u0131ld\u0131\u011f\u0131 bu t\u00fcr sald\u0131r\u0131lara kar\u015f\u0131 duyarl\u0131l\u0131klar\u0131 nedeniyle DeFi protokollerinin kullan\u0131labilirli\u011fi konusunda endi\u015feler vard\u0131. kay\u0131p. Bunun m\u00fcnferit bir olay olmad\u0131\u011f\u0131 ger\u00e7e\u011fi de endi\u015fe kayna\u011f\u0131 olmal\u0131d\u0131r.<\/p>\n\n\n\n<p>Deus Finance, Fantom A\u011f\u0131 \u00fczerine kurulmu\u015f bir DeFi protokol\u00fcd\u00fcr. Kullan\u0131c\u0131lar\u0131n, protokolde staking yaparak kripto para varl\u0131klar\u0131 \u00fczerinde faiz kazanmalar\u0131n\u0131 sa\u011flar. Faiz oranlar\u0131 de\u011fi\u015fkendir ve bahis yap\u0131lan para biriminin miktar\u0131na ba\u011fl\u0131d\u0131r. Deus Finance, geli\u015ftiricilerin platformunda vadeli i\u015flemler, bor\u00e7 verme ve se\u00e7enekler gibi finansal hizmetler olu\u015fturmas\u0131na olanak tan\u0131r.<\/p>\n\n\n\n<p>Sald\u0131rganlar, Deus Finance protokol\u00fcndeki bir kusurdan yararlanabildi ve herhangi bir stake etmek zorunda kalmadan yeni jetonlar basabildi. Sald\u0131r\u0131, Deus&#039;un ak\u0131ll\u0131 s\u00f6zle\u015fmelerinin platformun likidite havuzlar\u0131ndaki verileri okuma \u015feklini kand\u0131rmak i\u00e7in bir fla\u015f kredi kulland\u0131. Bu, sald\u0131rgan\u0131n baz\u0131 varl\u0131klar\u0131n de\u011ferini yapay olarak \u015fi\u015firmesine, bor\u00e7 almas\u0131na ve krediyi geri \u00f6dedikten sonra kar elde etmesine izin verdi.<\/p>\n\n\n\n<p>Yakla\u015f\u0131k $143 milyon, h\u0131zl\u0131 kredi olarak \u00f6d\u00fcn\u00e7 al\u0131nd\u0131, blok zinciri verilerinin g\u00f6sterdi\u011fi g\u00f6r\u00fcl\u00fcyor. Hacker, $13.4 milyon kar elde etmeyi ba\u015fard\u0131. PeckShield, protokol\u00fcn toplam kay\u0131plar\u0131n\u0131n \u00e7ok daha y\u00fcksek olabilece\u011fini s\u00f6yledi.<\/p>\n\n\n\n<p>Deus&#039;un sald\u0131rganlar\u0131 fla\u015f krediyi kullanarak USD Coin (USDC) stablecoin ve DEI&#039;den olu\u015fan bir likidite havuzundaki fiyatlar\u0131 ge\u00e7ici olarak manip\u00fcle edebildiler ve manip\u00fcle edilmi\u015f DEI fiyat\u0131n\u0131 havuzu \u00f6d\u00fcn\u00e7 almak ve bo\u015faltmak i\u00e7in kullanabildiler. Sald\u0131rgan\u0131n daha sonra hem USDC hem de DEI&#039;yi geri \u00e7ekmeden \u00f6nce USDC kullanarak krediyi geri \u00f6dedi\u011fi bildirildi.<\/p>\n\n\n\n<p>Fla\u015f krediler, DeFi kullan\u0131c\u0131lar\u0131n\u0131n s\u0131f\u0131r teminat kar\u015f\u0131l\u0131\u011f\u0131nda kredi almalar\u0131n\u0131 sa\u011flar. Bu kripto b\u00fcy\u00fcs\u00fc veya bedava para de\u011fil: Kredi, i\u015flem bitmeden veya ak\u0131ll\u0131 s\u00f6zle\u015fme i\u015flemi tersine \u00e7evirmeden \u00f6nce geri \u00f6denmelidir \u2013 sanki kredi hi\u00e7 var olmam\u0131\u015f gibi.<\/p>\n\n\n\n<p>Sald\u0131r\u0131 haberi, DeFi toplulu\u011fu \u00fczerinde \u015fok dalgalar\u0131 g\u00f6nderdi ve baz\u0131 kullan\u0131c\u0131lar, Deus&#039;un ak\u0131ll\u0131 s\u00f6zle\u015fmelerini denetleyen denetim firmas\u0131 Certik&#039;i i\u015faret etti. Ancak bug\u00fcn yay\u0131nlanan bir a\u00e7\u0131klamada Certik, sorunu tespit edemeyen \u00fc\u00e7\u00fcnc\u00fc taraf bir yaz\u0131l\u0131m denetleme arac\u0131 kulland\u0131\u011f\u0131n\u0131 s\u00f6yledi.<\/p>\n\n\n\n<p>Certik, otomatik s\u00f6zle\u015fme g\u00fcvenlik testi i\u00e7in en iyi uygulamalar\u0131 olu\u015fturmak i\u00e7in \u015fimdi ek denetimler yapaca\u011f\u0131n\u0131, mevcut s\u00fcrecini iyile\u015ftirece\u011fini ve di\u011fer ak\u0131ll\u0131 s\u00f6zle\u015fme denet\u00e7ileriyle birlikte \u00e7al\u0131\u015faca\u011f\u0131n\u0131 s\u00f6yledi. Yazma s\u0131ras\u0131nda, bu sald\u0131r\u0131n\u0131n arkas\u0131nda kimin oldu\u011fu belirsizli\u011fini koruyor.<\/p>\n\n\n\n<p>Bu, bir DeFi protokol\u00fcnden yararlanmak i\u00e7in fla\u015f kredinin ilk kez kullan\u0131lmas\u0131 de\u011fil. \u015eubat ay\u0131nda bir sald\u0131rgan, kullan\u0131c\u0131lar\u0131n kripto varl\u0131klar\u0131ndan faiz kazanabilecekleri ba\u015fka bir DeFi protokol\u00fc olan Compound&#039;dan yararlanmak i\u00e7in bir flash kredi kulland\u0131. \u0130stismar\u0131n bir sonucu olarak, Deus Finance&#039;ten $13.4 milyon \u00e7al\u0131nd\u0131. Sald\u0131r\u0131 2020&#039;de ger\u00e7ekle\u015fmi\u015f olsa da, Deus Finance&#039;in arkas\u0131ndaki ekip, kaybedilen t\u00fcm fonlar\u0131 geri almak i\u00e7in \u00e7al\u0131\u015f\u0131rken ayr\u0131nt\u0131lar\u0131n\u0131 ancak \u015fimdi a\u00e7\u0131klad\u0131.<\/p>\n\n\n\n<p>Deus ekibi, sorunu zaten \u00e7\u00f6zd\u00fc\u011f\u00fcn\u00fc ve fonlar\u0131 geri almak i\u00e7in \u00e7al\u0131\u015ft\u0131\u011f\u0131n\u0131 s\u00f6yl\u00fcyor. Ayr\u0131ca tam bir denetim yaparken platformdaki t\u00fcm ticareti durdurdu.<\/p>","protected":false},"excerpt":{"rendered":"<p>Merkezi olmayan finans (DeFi) uygulamas\u0131 Deus Finance, iki ayl\u0131k bir s\u00fcrede ikinci kez kullan\u0131ld\u0131. PeckShield&#039;deki g\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131na g\u00f6re, sald\u0131rganlar bug\u00fcn Asya&#039;n\u0131n erken saatlerinde $13.4 milyon de\u011ferinde kripto para birimini ele ge\u00e7irmeyi ba\u015fard\u0131lar. K\u00f6t\u00fcye kullan\u0131m, Fantom A\u011f\u0131&#039;nda meydana geldi. PeckShield&#039;den gelen say\u0131s\u0131z rapordan sonra, arkas\u0131ndaki ekip [\u2026]<\/p>","protected":false},"author":8,"featured_media":2771,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_editorskit_title_hidden":false,"_editorskit_reading_time":0,"_editorskit_is_block_options_detached":false,"_editorskit_block_options_position":"{}","_uag_custom_page_level_css":"","footnotes":""},"categories":[188,12],"tags":[172,222,235],"class_list":["post-2770","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-defi-news","category-news","tag-crypto","tag-defi","tag-finance"],"acf":[],"uagb_featured_image_src":{"full":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/04\/zymeaawirnq.jpg",1600,1067,false],"thumbnail":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/04\/zymeaawirnq-500x330.jpg",500,330,true],"medium":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/04\/zymeaawirnq-300x200.jpg",300,200,true],"medium_large":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/04\/zymeaawirnq-768x512.jpg",640,427,true],"large":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/04\/zymeaawirnq-1024x683.jpg",640,427,true],"1536x1536":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/04\/zymeaawirnq-1536x1024.jpg",1536,1024,true],"2048x2048":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/04\/zymeaawirnq.jpg",1600,1067,false],"trp-custom-language-flag":["https:\/\/bitcoinwisdom.com\/wp-content\/uploads\/2022\/04\/zymeaawirnq.jpg",18,12,false]},"uagb_author_info":{"display_name":"Martin K","author_link":"https:\/\/bitcoinwisdom.com\/tr\/author\/martin\/"},"uagb_comment_info":0,"uagb_excerpt":"Decentralized finance&nbsp;(DeFi) application Deus Finance was exploited for the second time in a space of two months. The attackers were able to obtain over $13.4 million worth of cryptocurrency in early Asian hours today, according to security researchers at PeckShield. The exploit occurred on the Fantom Network. After numerous reports from PeckShield, the team behind&hellip;","_links":{"self":[{"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/posts\/2770","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/comments?post=2770"}],"version-history":[{"count":0,"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/posts\/2770\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/media\/2771"}],"wp:attachment":[{"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/media?parent=2770"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/categories?post=2770"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitcoinwisdom.com\/tr\/wp-json\/wp\/v2\/tags?post=2770"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}