{"id":39431,"date":"2022-11-03T13:48:51","date_gmt":"2022-11-03T17:48:51","guid":{"rendered":"https:\/\/coinscreed.com\/staging\/?p=39431"},"modified":"2022-11-13T14:50:34","modified_gmt":"2022-11-13T18:50:34","slug":"skyward-finance-exploit-results-in-3m-loss","status":"publish","type":"post","link":"https:\/\/coinscreed.com\/staging\/skyward-finance-exploit-results-in-3m-loss\/","title":{"rendered":"Skyward Finance Exploit Results In $3M Loss"},"content":{"rendered":"\n
According to reports, the hacker removed 1.1 million NEAR tokens <\/a>from Skyward finance, which were worth $3 million at the time of publication.<\/h5>\n\n\n\n
\"Skyward
Skyward Finance Exploit Results In $3M Loss<\/figcaption><\/figure>\n\n\n\n

According to reports, 1.1 million Near Protocol (NEAR $3.04) tokens\u2014worth an estimated $3 at the time of publication\u2014have apparently been stolen from Skyward Finance an initial DEX offering (IDO) platform that enables equitable token distribution for companies on the Near Protocol<\/a>. Sanket Naikwadi, a community moderator for Aurora Lab, posted the information on Twitter. He claimed that the exploit was discovered by a member of the Near Protocol community who goes by the handle Nearscout.<\/p>\n\n\n\n

\n

The @skywardfinance\r\n \r\n \r\n \r\n <\/g>\r\n \r\n \r\n \r\n <\/clipPath>\r\n <\/defs><\/svg><\/span><\/a> was just exploited for ~1.1M $NEAR<\/use><\/svg><\/span><\/a> Tokens (Worth ~3M) . \ud83d\ude22

Thnx to @NearScout<\/use><\/svg><\/span><\/a> for noticing the treasury drain, he pinged me asking if something is wrong with skyward… then we looked into contract txns and found out about the exploit and sus txns.

smol \ud83e\uddf5<\/p>— Sank\u039et \u24c3 | sanketn81.polygon \/ near \/ lens (\ud83d\udc32,\ud83d\udc9a) (@sanket_naikwadi) November 2, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

Ref finance, a community-led multi-purpose decentralized finance (DeFi) platform built on the Near Protocol, and the Skyward team have been informed of the drain, per the chain of tweets on the vulnerable<\/use><\/svg><\/span><\/a>. The exploiter reportedly initiated the drain by buying lots of skyward tokens on Ref Finance, and \u201cthen redeemed it through Treasury on Skyward Finance,\u201d where they appear to have \u201cgot lots of NEAR than what 1 SKYWARD was worth”. <\/p>\n\n\n\n

Holders of SKYWARD Tokens are advised to exchange or redeem their tokens elsewhere and should stop communicating with the platform according to Naikwadi, who also noted that the \u201chacker has already withdrawn NEAR to lots of different wallets.” <\/p>\n\n\n\n

\n

Then he repeated the same process a few more times until all wNEAR from the treasury was not redeemed.

Although the Skyward team responded instantly, but since treasury contracts are locked those can't be paused by anyone, not even team. pic.twitter.com\/1BTalhYo51<\/use><\/svg><\/span><\/a><\/p>— Sank\u039et \u24c3 | sanketn81.polygon \/ near \/ lens (\ud83d\udc32,\ud83d\udc9a) (@sanket_naikwadi) November 2, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

The DeFi ecosystem appears to be experiencing an increase in exploits. October 2022 has been dubbed “the biggest month of the biggest year ever for hacker activity” by blockchain analytics company Chainalysis. On October 12, it was reported that Mango Markets, a DeFi exchange based in Solana<\/a>, had lost $100 million worth of bitcoin, causing its token to fall by 52%. TempleDAO was defrauded of $2 million on the same day as the Mango Markets.<\/p>\n","protected":false},"excerpt":{"rendered":"

According to reports, the hacker removed 1.1 million NEAR tokens from Skyward finance, which were worth $3 million at the time of publication. According to reports, 1.1 million Near Protocol (NEAR $3.04) tokens\u2014worth an estimated $3 at the time of publication\u2014have apparently been stolen from Skyward Finance an initial DEX offering (IDO) platform that enables […]<\/p>\n","protected":false},"author":43,"featured_media":39433,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[11476],"tags":[202,197,12002],"class_list":["post-39431","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hacks-and-scams","tag-blockchain","tag-defi","tag-hacks"],"jetpack_featured_media_url":"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/11\/jpg_20221103_181443_0000.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/39431","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/users\/43"}],"replies":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/comments?post=39431"}],"version-history":[{"count":0,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/39431\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media\/39433"}],"wp:attachment":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media?parent=39431"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/categories?post=39431"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/tags?post=39431"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}