VERDICT —UNRATED
Verdict pending. Auto-ingested incidents are reviewed before a public verdict is rendered.
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
According to the intelligence of the SlowMist security team, the Numbers Protocol (NUM) token project on the ETH chain was attacked, and the attacker made a profit of about $13,836. The main reason for this attack is that the NUM token does not have a permit function and has a callback function, so a fake signature can be passed in to deceive the cross-chain bridge and cause the user's assets to be transferred out unexpectedly. Attack method (per SlowMist): Contract Vulnerability. Reported loss: $ 13,836.
Sourced from
slowmist
Technical record
- chain
- —
- protocol
- Numbers Protocol
- bug_class
- logic
- date_occurred
- 2022-11-23
- loss_usd
- $13,836
- source_id
- sm:numbers-protocol::2022-11-23
Related — same bug class· logic