Foresight News|Jan 12, 2026 11:07
[SlowMist: Truebit Security Incident Caused by Lack of Overflow Protection Mechanism in Contract]
Foresight News reports that the SlowMist security team has released an analysis report on the Truebit Protocol security incident. On January 8, Truebit Protocol was attacked due to an integer overflow vulnerability in its Purchase contract. The attacker was able to mint TRU tokens at nearly zero cost and steal 8,535 ETH (approximately $26.44 million). The root cause was the lack of an overflow protection mechanism in the contract, leading to incorrect price calculations. The stolen funds were subsequently transferred to Tornado Cash. It is recommended to always use SafeMath to protect all arithmetic operations in contracts compiled with Solidity versions prior to 0.8.0 to prevent overflow-related logic flaws.
Share To
Timeline
HotFlash
APP
X
Telegram
CopyLink