Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Reproducible Foundry test fork from SunWeb3Sec/DeFiHackLabs. Clone the repo, run forge test against the file path above, and replay the exploit against a mainnet fork at the historical block. Use for reproduction only — not for live targets.
Metaverse DeFi protocol Rikkei Finance was attacked because the attacker changed the oracle machine to a malicious contract. Rikkei Finance said users affected by the exploit will be fully compensated, and the team said the bug is being fixed and services have been fully restored. The total loss value is approximately $1.1 million (2671 BNB). Attack method (per SlowMist): Contract Vulnerability. Reported loss: $ 1,100,000.
- chain
- —
- protocol
- Rikkei Finance
- bug_class
- oracle
- date_occurred
- 2022-04-15
- loss_usd
- $1,100,000
- source_id
- sm:rikkei-finance::2022-04-15