Post Mortem: DefiLabs

报告 ·事件分析 · 2024年1月7日

Project name: DefiLabs

Project type: DeFi

Date of rug pull: July 27th, 2023

Asset loss: $1.6M

Vulnerability: Rug pull

Date of audit report publishing: Aug 25th, 2022

Conclusion: Out of Audit Scope

Details of the Exploit

Background

DefiLabs is a DeFi project providing various DeFi services such as staking and exchange.

Nature of the Vulnerability

There is a privileged function withdrawFunds allowing the funder to withdraw all funds in the pool.

CertiK Audit Overview

defi1 defi2

Conclusion

On July 27th, 2023, DefiLabs was rug-pulled by a privileged function in the vPoolv6 contract, which is not audited by Certik.

相关博客

报告 ·事件分析

Post Mortem: Hector Network

In light of the $2.7 million withdrawal incident from Hector Network's contract, we have gathered all the relevant information and are committed to maintaining transparency with the public.

2024年1月17日

报告 ·事件分析

Post Mortem: Fintoch

On May 5th, 2023, the Fintoch was rugpulled, leading to a loss of ~$31.6M.

2024年1月8日

报告 ·事件分析

Post Mortem: Sushiswap

On April 9th, 2023, the RouteProcessor2 in Sushiswap was exploited due to missing validation on the input with processRoute function. The total loss is around $ 3.3 M.

2024年1月8日