ChainBleedv0.1 · open intel
← back to feed·FRONTEND2020-02-12 · 6y ago
Incident · SLOWMIST

IOTA

Application Vulnerability
Estimated loss
VERDICT —OUT OF SCOPE
Root cause is a frontend / UI hijack — users authorized the malicious transaction from a compromised site or DNS. On-chain contract was not the failure surface; pre-deployment audit cannot catch this class.
▰ METHOD
FRONTEND
FRONTEND
Root cause

Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.

Forensic narrative

IOTA has shut down its entire network this week after hackers exploited a vulnerability in the official IOTA wallet app to steal user funds.Estimated loss of 850000 MIOTA (valued at us $2.3 million). Attack method (per SlowMist): Application Vulnerability. Reported loss: 8,550,000 MIOTA.

Primary source
https://www.zdnet.com/google-amp/article/iota-cryptocurrency-shuts-down-entire-network-after-wallet-hack/?__twitter_impression=true
Sourced from
slowmist
Technical record
chain
protocol
IOTA
bug_class
frontend
date_occurred
2020-02-12
loss_usd
source_id
sm:iota::2020-02-12
Related — same bug class· frontend
2026-04-14
1mo ago
CowSwap
Supply-chain attack
frontend
$1.20M
OUT OF SCOPE
2025-12-12
6mo ago
ETH
ZEROBASE
Frontend Attack
frontend
$123.0K
OUT OF SCOPE
2025-06-23
11mo ago
CoinTelegraph
Frontend Attack
frontend
OUT OF SCOPE
2025-06-21
11mo ago
CoinMarketCap
Frontend Attack
frontend
$21.6K
OUT OF SCOPE
2024-08-20
1y ago
SOL
Parcl
Frontend Attack
frontend
OUT OF SCOPE
2023-09-19
2y ago
ETH
Balancer V2
Frontend Attack
frontend
$238.0K
OUT OF SCOPE
ChainBleed — live web3 threat intelligence