According to SlowMist's analysis, Bybit's attack was mainly due to its use of an outdated Safe contract version (v1.1.1), which made it impossible to use the key Guard mechanism for protection.
This loss could have been avoided if Bybit had upgraded to 1.3.0 or later and implemented proper Guard mechanisms, including specifying a whitelist of unique recipient addresses and strict ACL verification of contract functions.
SlowMist emphasizes that while this is just a hypothesis, it provides important insights into future asset security management.
Slow Mist: If Bybit timely update Safe contract version, or can avoid this hacking incident
2025-02-26 08:49:09
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Previous article:
慢雾:若 Bybit 及时更新 Safe 合约版本,或能避免本次的黑客事件Next article:
某鲸鱼/机构过去半小时花费3281万DAI购进1.33万枚ETH
