Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Reproducible Foundry test fork from SunWeb3Sec/DeFiHackLabs. Clone the repo, run forge test against the file path above, and replay the exploit against a mainnet fork at the historical block. Use for reproduction only — not for live targets.
Decentralized NFT financialization protocol Omni X has been attacked and stolen funds have been transferred to Tornado.cash. The main reason for this attack is that the burn function will call the callback function externally to cause the reentrancy problem, and the liquidation function uses the old vars value for judgment, resulting in the user's status identification even after reentrancy and then borrowing. Being set as unborrowed results in no repayments. Attack method (per SlowMist): Reentrancy Attack. Reported loss: 1,300 ETH.
- chain
- —
- protocol
- Omni X
- bug_class
- reentrancy
- date_occurred
- 2022-07-10
- loss_usd
- —
- source_id
- sm:omni-x::2022-07-10