Orbit Chain suffered an attack of $80 million, resulting in the theft of multiple coin assets.

robot
Abstract generation in progress

Orbit Chain Attacked: Losses Up to $80 Million

At the beginning of the New Year 2024, a major security incident has drawn widespread attention in the cryptocurrency community. According to a security risk monitoring platform, the Orbit Chain project suffered a severe attack, with losses amounting to at least 80 million USD. Security analysis revealed that the attackers had begun small-scale probing attacks a day earlier and used stolen ETH as fuel for the subsequent large-scale attack.

Orbit Chain, as a cross-chain bridge platform, allows users to utilize various crypto assets across different blockchains. In response to this security incident, the project team has taken emergency measures, suspending the operation of the cross-chain bridge contract and attempting to establish communication with the attackers.

How did the Orbit Chain theft of 80 million dollars happen, the first major case of the year?

Attack Analysis

The core of this incident lies in the fact that the attacker directly called the withdraw function in the Orbit Chain bridging contract, successfully transferring a large amount of assets. A deeper analysis of the code structure of the withdraw function reveals that this function employs a signature verification mechanism to ensure the legitimacy of the fund transfer.

In blockchain transactions, signature verification is a common and important security measure used to confirm the identity and authority of the transaction initiator. The withdraw function aims to ensure that only authorized entities can perform asset transfer operations by verifying signatures.

Further research into the signature verification function _validate reveals that this function returns the number of owner signatures. This number is then compared to a preset threshold to determine whether to allow the transaction to proceed. According to on-chain data, this contract has a total of 10 administrator addresses, and the required value is set to 7, meaning that at least 70% of the administrators need to sign off to approve asset withdrawals.

How did Orbit Chain's $80 million theft happen, the first major case of the year?

Attack Process

The actions of the attackers can be traced back to December 30, 2023. Since then, the attackers have begun a series of small-scale probing attacks and have distributed small amounts of stolen ETH to several other addresses in preparation for a subsequent large-scale attack.

The real large-scale attack occurred on the evening of December 31, 2023. The attackers exploited multiple addresses to simultaneously launch attacks on various crypto assets of the Orbit Chain project, including DAI, WBTC, ETH, USDC, and USDT.

How did the Orbit Chain theft of 80 million dollars happen, the first major case of the year?

Capital Flow

As of now, the transfer situation of the stolen funds has become initially clear. After officially launching the attack, the attackers dispersed the stolen funds into five different addresses. These transactions include:

  • 50 million stablecoins (30 million USDT, 10 million DAI, and 10 million USDC)
  • 231 wBTC (valued at approximately 10 million USD)
  • 9500 ETH (worth approximately 21.5 million USD)

How did the Orbit Chain theft of 80 million USD happen, the first major case of the year?

Security Insights

This incident once again emphasizes the importance of security in blockchain systems. When designing and implementing blockchain projects, security should always be a primary consideration.

  1. Code Security: Contract code, as the core of the blockchain system, must adhere to the strictest security standards and best practices to avoid common vulnerabilities and attack vectors.

  2. Authentication: A robust authentication mechanism, multi-signature, and permission management system are key to preventing unauthorized access and asset loss.

  3. Continuous Monitoring: It is crucial to monitor system anomalies in real-time and respond quickly to potential threats.

  4. Risk Diversification: Implement a multi-layered security strategy to avoid single points of failure.

  5. Security Audit: Conduct regular comprehensive security audits to promptly identify and fix potential vulnerabilities.

This incident reminds us that while pursuing innovation and efficiency, we must not overlook the importance of fundamental security measures. Only by establishing a comprehensive and stringent security system can we provide users with truly safe and reliable blockchain services.

How did the Orbit Chain theft of 80 million USD happen, the first major case of the year?

View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • 5
  • Share
Comment
0/400
SignatureVerifiervip
· 07-07 06:22
clearly insufficient signature validation... *typical*
Reply0
TokenomicsTherapistvip
· 07-05 08:56
Why is it cold again?
View OriginalReply0
AlgoAlchemistvip
· 07-05 08:48
Another Rug Pull happened.
View OriginalReply0
OldLeekNewSicklevip
· 07-05 08:43
The new year has already begun to play people for suckers, and the earnings are quite fast.
View OriginalReply0
JustHodlItvip
· 07-05 08:42
Be Played for Suckers is here again.
View OriginalReply0
Trade Crypto Anywhere Anytime
qrCode
Scan to download Gate app
Community
English
  • 简体中文
  • English
  • Tiếng Việt
  • 繁體中文
  • Español
  • Русский
  • Français (Afrique)
  • Português (Portugal)
  • Bahasa Indonesia
  • 日本語
  • بالعربية
  • Українська
  • Português (Brasil)