Charts
DataOn-chain
VIP
Market Cap
API
Rankings
CoinOSNew
CoinClaw
Language
  • 简体中文
  • 繁体中文
  • English
Leader in global market data applications, committed to providing valuable information more efficiently.

Features

  • Real-time Data
  • Special Features
  • AI Grid

Services

  • News
  • Open Data(API)
  • Institutional Services

Downloads

  • Desktop
  • Android
  • iOS

Contact Us

  • Chat Room
  • Business Email
  • Official Email
  • Official Verification

Join Community

  • Telegram
  • Twitter
  • Discord

© Copyright 2013-2026. All rights reserved.

简体繁體English
|Legacy

Solana DeFi Protocol Crema Loses $8.8M in Exploit

CN
coindesk
Follow
3 years ago
AI summarizes in 5 seconds.


Solana-based liquidity protocol Crema Finance had more than $8.78 million worth of cryptocurrencies stolen from its platform in an attack over the weekend, developers said in a tweet.


Crema said it had suspended its smart contract after the exploit. The protocol allows liquidity providers to set specific price ranges, add single-sided liquidity and conduct range order trading. This makes for a sophisticated and decentralized trading platform.


“We've been closely working with several experienced security institutes and relevant organizations to track the hacker's fund movements,” the developers said in a tweet.


Value locked on Crema plunged to $3 million on Monday from over $12 million on Saturday following the exploit, data shows. Crema has seen trading volumes of $1.34 billion since its inception in January.


The attacker started by creating a fake tick account. A tick account is "a dedicated account that stores price tick data in CLMM,” the developers said, referring to Crema's market making protocol. After that, the attacker exploited a command by writing the data on the fake account and circumventing security measures.


The attacker then used a flash loan to manipulate the prices of assets on liquidity pools. This, along with the false data entries, allowed the attacker to claim “a huge fee amount out from the pool.”


Flash loans allow traders to borrow unsecured loans from lenders by relying on smart contracts instead of third parties.


The stolen funds were swapped to 69422.9 solana (SOL) and 6,497,738 USD Coin (USDC). The Solana-based USDC was then bridged to the Ethereum network via Wormhole and swapped to 6,064 ether (ETH). These funds amount to over $8.5 million at current prices.


The attacker’s Ethereum address, 0x8021b2962dB803b73Aa874030B0B42c202E8458F as flagged by blockchain scanning tool Etherscan, had not moved the stolen funds or converted to other coins at writing time, the data show.




免责声明:本文章仅代表作者个人观点,不代表本平台的立场和观点。本文章仅供信息分享,不构成对任何人的任何投资建议。用户与作者之间的任何争议,与本平台无关。如网页中刊载的文章或图片涉及侵权,请提供相关的权利证明和身份证明发送邮件到support@aicoin.com,本平台相关工作人员将会进行核查。

|
|
APP
Windows
Mac
Share To

X

Telegram

Facebook

Reddit

CopyLink

|
|
APP
Windows
Mac
Share To

X

Telegram

Facebook

Reddit

CopyLink

Selected Articles by coindesk

1 hour ago
Crypto trader sees Hyperliquid, AI tokens leading next altcoin rally
2 hours ago
Clarity Act could spark a boom in crypto ‘yield-as-a-service’
5 hours ago
Bitcoin tanks to $74,300 as spot ETFs bleed $2.26 billion in two weeks
View More

Table of Contents

|
|
APP
Windows
Mac
Share To

X

Telegram

Facebook

Reddit

CopyLink

Related Articles

avatar
avatarDecrypt
36 minutes ago
Argentina Launched an AI to Predict the Future. It Couldn\\\'t Predict a Typo
avatar
avatarcoindesk
1 hour ago
Crypto trader sees Hyperliquid, AI tokens leading next altcoin rally
avatar
avatarbitcoin.com
2 hours ago
Bitcoin Slides as Coinbase Bitcoin Premium Index Signals Reduced Institutional Accumulation
avatar
avatarbitcoin.com
2 hours ago
Bitcoin Price Analysis: BTC Risks Deeper Correction Below $74K
avatar
avatarcoindesk
2 hours ago
Clarity Act could spark a boom in crypto ‘yield-as-a-service’
APP
Windows
Mac

X

Telegram

Facebook

Reddit

CopyLink