Home > Quick > Body

慢雾:Bybit攻击者利用了恶意合约中的后门函数sweepETH与sweepERC20

clock
2025-02-21 17:24:17
慢雾在X平台表示,以下是Bybit黑客的一些作案细节:
- 恶意的实现合约在 UTC 2025-02-19 7:15:23 被部署:0xbDd077f651EBe7f7b3cE16fe5F2b025BE2969516;
- 攻击者在 UTC 2025-02-21 14:13:35 利用三个 owner 签署了将 Safe 实现合约替换为恶意合约的交易:0x46deef0f52e3a983b67abf4714448a41dd7ffd6d32d32da69d62081c68ad7882;
- 恶意的升级逻辑通过 DELEGATECALL 被嵌入 STORAGE[0x0]:0x96221423681A6d52E184D440a8eFCEbB105C7242;
攻击者利用恶意合约中的后门函数 sweepETH 与 sweepERC20 偷空了热钱包。
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
New Tab Page - Desk3 | Plugin
Stay ahead of the game in the cryptocurrency space.