Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
According to SlowMist Intelligence, Nirvana, a stablecoin project on the Solana chain, was attacked by a flash loan. The attacker used a flash loan to borrow 10,250,000 USDC from Solend by deploying a malicious contract, and then called the Nirvana contract buy3 method to buy a large amount of ANA tokens. Nirvana contract swap method to sell part of ANA, get USDT and USDC, after repaying the flash loan, a total profit of 3,490,563.69 USDT, 21,902.48 USDC and 393,230.32 ANA tokens, then the hacker sold ANA tokens and passed all the dirty money through the cross-chain bridge transfer. Attack method (per SlowMist): Flash Loan Attack. Reported loss: $ 3,500,000.
- chain
- solana
- protocol
- Nirvana
- bug_class
- flashloan
- date_occurred
- 2022-07-28
- loss_usd
- $3,500,000
- source_id
- sm:nirvana::2022-07-28