VERDICT —UNRATED
Verdict pending. Auto-ingested incidents are reviewed before a public verdict is rendered.
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
when Fulcrum team released their own Flash Loans feature on the Ethereum Mainnet, and we happened to find a very critical vulnerability in it. We discovered that $2.5M of user funds from 3 pools could be stolen within a single transaction.. Reported loss: $2,500,000.
Sourced from
chainsec
Technical record
- chain
- ethereum
- protocol
- Fulcrum
- bug_class
- flashloan
- date_occurred
- 2020-01-11
- loss_usd
- $2,500,000
- source_id
- cs:fulcrum::2020-01-11
Related — same bug class· flashloan