Security company: Harvest_ Keeper project has maliciously transferred user funds, involving an amount of approximately 933000 US dollars
It is reported that on March 19, 2023, Harvest was discovered according to monitoring by the blockchain security audit company Beosin_ Keeper project has maliciously transferred user funds, involving an amount of approximately 933000 US dollars. The Beosin security team discovered through on-chain data that an attacker used owner privileges to transfer the USDT pledged by the user in the HarvestKeeper contract by calling the getAmount function. Subsequently, the attacker utilized the user’s token authorization for the EOA (0x250… c14) account, thereby transferring user funds through the EOA multiple times. It is recommended that the user cancel the authorization for the EOA. Currently, the stolen funds are stored in multiple addresses, most of which are stored in 0x92288f964ae8fce23e8d337422ad66eefc333670.
Interpretation of this information:
The message states that on March 19, 2023, the blockchain security audit company Beosin discovered that the HarvestKeeper project had been hacked and maliciously transferred user funds totaling approximately 933,000 USD. The attack involved an attacker utilizing owner privileges to move USDT pledged by a user in the HarvestKeeper contract. The attacker then used the user’s token authorization for the EOA account to transfer the funds multiple times, prompting a recommendation that users cancel the authorization for the EOA. The stolen funds are held in several addresses, with the majority of them located in the address 0x92288f964ae8fce23e8d337422ad66eefc333670.
The message indicates that the HarvestKeeper project has become the latest victim of a cybersecurity attack, forcing users to lose almost a million dollars. The attackers were able to use owner privileges to bypass the system’s safeguards and transfer the funds using the user’s token authorization. The message highlights the importance of maintaining the safety of these authorizations and canceling them when necessary to safeguard against attacks.
The use of blockchain security auditing by Beosin reveals the potential of utilizing blockchain technology in ensuring system safety and preventing fraudulent activities. Through on-chain data, Beosin was able to discover the hacking incident and alert users of the malicious actions. This event also emphasizes the importance of security protocols in developing decentralized systems and highlights the need for continued investment in security research and development for the blockchain industry.
This article and pictures are from the Internet and do not represent 96Coin's position. If you infringe, please contact us to delete:https://www.96coin.com/44234.html
It is strongly recommended that you study, review, analyze and verify the content independently, use the relevant data and content carefully, and bear all risks arising therefrom.