Arbitrum DeltaPrime Blue Loses $6M as Hackers Access Private Keys
The threat actors exploited a vulnerability related to the admin keys, specifically the private key associated with the address 0x40e4ff9e018462ce71fa34abdfa27b8c5e2b1afb.
On September 16, 2024, the decentralized finance (DeFi) protocol DeltaPrimeDefi experienced a significant security breach on the Arbitrum network, resulting in the loss of millions of dollars. The attack, which involved the compromise of a private key, has led to the draining of multiple liquidity pools, causing substantial losses for users.
How Arbitrum DeltaPrime Blue Suffer Loss
The threat actors gained control of this key, allowing them to upgrade the protocol’s proxy, subsequently enabling the draining of liquidity pools.
Furthermore, the incident began with the detection of suspicious transactions involving the DeltaPrimeDefi protocol. The attack exploited a vulnerability related to the admin keys, specifically the private key associated with the address 0x40e4ff9e018462ce71fa34abdfa27b8c5e2b1afb.
The attack targeted the #DPUSDC, #DPARB, and #DPBTCb pools, resulting in an estimated loss of over $5.93 million. The threat actors swiftly swapped a portion of the stolen funds, including USDC, into ETH, further complicating the situation.
Despite immediate actions taken by the DeltaPrimeDefi team, the attack is still ongoing, and the potential total loss remains unknown. The team is currently focusing on recovering the stolen assets, mitigating further damage, and addressing user concerns.
DeltaPrime Reassure Users Active support
On it official X (formerly known as Twitter) page, the team has assured users that the risk is contained and they are working diligently to minimize losses. They have also emphasized the role of their insurance pool in covering any potential losses where possible.
“Rest assured that the incident did not have any impact on DeltaPrimeDefi’s Avalanche deployment, also known as DeltaPrime Red. This is due to the implementation of a multisig and cold wallet system for security purposes,” DeltaPrime says
Nonetheless, the incident serves as a stark reminder of the inherent security risks associated with decentralized finance. “The vulnerability exploited in this attack highlights the importance of robust security measures and rigorous auditing processes within DeFi protocols,” an X user asserted.
DeltaPrimeDefi has committed to providing regular updates on the situation via their official channels, including Discord, and will continue to work towards a swift and transparent resolution of the incident.
