Trusted

Grim Finance Becomes Latest DeFi Exploit After $30M Hack

2 mins
Updated by Kyle Baird
Join our Trading Community on Telegram

In Brief

  • Vault smart contact was exploited by the attacker.
  • Grim closes all vaults as token tanked 80%.
  • Exploit adds to the growing list of DeFi hacks in 2021.
  • promo

It has been a grim weekend for the Grim Finance protocol which has reported that it had been exploited to the tune of $30 million.

On Dec 19, the decentralized finance project Grim Finance alerted its uses to an attack. The team stated that the platform had been exploited by an “external attacker” that has made off with $30 million worth of crypto assets.

The Grim Finance team went on to state that it was an advanced attack in which the hacker exploited the protocol’s vault contract. It added that the vaults have been paused and recommended that user withdraw their funds.

“We have paused all of the vaults to prevent any future funds from being placed at risk, please withdraw all of your funds IMMEDIATELY.”

Grim Finance labels itself as a “compounding yield optimizer” which employs complex vault strategies to offer boosted yields from liquidity provider tokens.

Grim Finance’s smart contract exploited

Around an hour before the malicious smart contract was exploited, the attacker pre-funded Grim Finance’s Ethereum and Binance Smart Chain wallets using Tornado Cash. The stolen crypto was bridged from the Fantom network on which Grim is based to Ethereum before being converted into USDC and DAI.

Grim stated that the exploit was found in the vault contract so all of the vaults and deposited funds are currently at risk. The hacker tricked the protocol with a reentrancy attack which creates fake additional deposits into a vault while an initial transaction is still ongoing.

“We have contacted and notified Circle (USDC), DAI, and AnySwap regarding the attacker address to potentially freeze any further fund transfers.”

In its latest tweet, the Grim Finance team said that they had reopened the “Tshare Masonry Vault” so that users could withdraw before it is permanently closed.

The protocol’s native GRIM token dumped 80% at the time of the hack in a fall from $0.794 to $0.151 according to CoinGecko. It has currently recovered marginally to trade at $0.206 at the time of writing. GRIM is currently down 89% from its Oct 20 all-time high of $1.84.

Grim Finance Hack

A year of DeFi exploits

Grim Finance isn’t alone. DeFiYield’s “Rekt Database” currently reports that $2.5 billion has been lost to crypto and DeFi hacks, scams, and exploits over the past 5 years.

On Dec 14, Brinc Finance was exploited with $1.1 million lost, and a day earlier, the Vulcan Forged NFT game studio lost nearly $100 million in the second-largest attack after Poly Network.   

Top crypto projects in the US | November 2024
Coinbase Coinbase Explore
Coinrule Coinrule Explore
Uphold Uphold Explore
3Commas 3Commas Explore
Chain GPT Chain GPT Explore
Top crypto projects in the US | November 2024
Coinbase Coinbase Explore
Coinrule Coinrule Explore
Uphold Uphold Explore
3Commas 3Commas Explore
Chain GPT Chain GPT Explore
Top crypto projects in the US | November 2024

Disclaimer

In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and ConditionsPrivacy Policy, and Disclaimers have been updated.

profile.jpg
Martin Young
Martin Young is a seasoned cryptocurrency journalist and editor with over 7 years of experience covering the latest news and trends in the digital asset space. He is passionate about making complex blockchain, fintech, and macroeconomics concepts understandable for mainstream audiences.   Martin has been featured in top finance, technology, and crypto publications including BeInCrypto, CoinTelegraph, NewsBTC, FX Empire, and Asia Times. His articles provide an in-depth analysis of...
READ FULL BIO
Sponsored
Sponsored