VERDICT —OUT OF SCOPE
Root cause is infrastructure (DNS / cloud / database / third-party API) compromise, not on-chain contract logic. Pre-deployment source review would not surface this; coverage lives in cloud-security + supply-chain audit, separate discipline.
▰ METHOD
INFRASTRUCTURE
INFRASTRUCTURE
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
The Filecoin space race started, and the CDSI alliance node "t02398" suffered a large number of malicious and illegal attacks. The attacker sent a large number of messages through the filtered whitelist to block the node, consuming a lot of calculations on the Lotus node, making the node unable to complete the task normally and eventually losing computing power. Attack method (per SlowMist): DDoS Attack. Reported loss: -.
Primary source
https://www.tuoniaox.com/newsflash/p-458791.html ↗Sourced from
slowmist
Technical record
- chain
- —
- protocol
- Filecoin
- bug_class
- infrastructure
- date_occurred
- 2020-08-25
- loss_usd
- —
- source_id
- sm:filecoin::2020-08-25
Related — same bug class· infrastructure