Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Based on Monero’s privacy-centric DeFi protocol Haven Protocol (XHV), it released analysis reports and measures for three serious attacks related to it in late June. The chain rollback plan will be initiated and a hard fork will be implemented. Fix the known vulnerabilities in protocol minting. Regarding specific attacks, on June 24, 203,000 xUSD and 13.5 xBTC were minted in two attacks; on June 27, an unknown amount of XHV was minted due to a vulnerability in the conversion verification of xAsset; June 29 , The attacker exploited a vulnerability that allowed the minting of 9 million xUSD. Attack method (per SlowMist): Minting Attack. Reported loss: $ 8,186,549.
- chain
- —
- protocol
- Haven Protocol
- bug_class
- unknown
- date_occurred
- 2021-07-03
- loss_usd
- $8,186,549
- source_id
- sm:haven-protocol::2021-07-03