Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
The first algorithmic stablecoin project on Binance Smart Chain, bDollar, suffered a price manipulation attack, and the attacker made a profit of 2,381 WBNB (worth about $730,000). This attack mainly exploits the design loophole of the claimAndReinvestFromPancakePool function in the DAO fund proxy contract CommunityFund when adding liquidity. It does not fully consider that after the price is maliciously raised, the project party will passively use the funds in its own contract when adding liquidity. The situation of high-level connection. Attack method (per SlowMist): Price Manipulation. Reported loss: 2381 WBNB.
- chain
- bsc
- protocol
- bDollar
- bug_class
- oracle
- date_occurred
- 2022-05-21
- loss_usd
- —
- source_id
- sm:bdollar::2022-05-21