VERDICT —UNRATED
Verdict pending. Auto-ingested incidents are reviewed before a public verdict is rendered.
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
On July 23, an attacker exploited a misconfiguration to gain access to $1 million from 13 different Prime accounts. This misconfiguration allowed the attacker to illegitimately transfer ownership of the Prime accounts to their own address, enabling them to repay loans and withdraw collateral. On July 24, the attacker returned $900,000. Attack method (per SlowMist): Contract Vulnerability. Reported loss: $ 1,000,000.
Sourced from
slowmist
Technical record
- chain
- —
- protocol
- DeltaPrime
- bug_class
- logic
- date_occurred
- 2024-07-23
- loss_usd
- $1,000,000
- source_id
- sm:deltaprime::2024-07-23
Related — same bug class· logic