Defi Protocol Sir.Trading loses the entire $ 355K TVL in Exploit

2 days ago

0 13 1 minute read

Etherumni deficol Sir.Trading, also known as synthetics that was implemented right, completely drained in operation 30. Marta, loss of all 355,000 dollars of its total value locked.

Tenarm, Protective Firm for Blokcain, was the first to report an attack on 30. March mail o. X. Tearmor marked several suspicious transactions and pointed out that the stolen funds were transferred to the railway, privacy platform, which helps hiding transactions.

Later, determination for the security platform, revealed that Hacker used the deficiency in the Treasury Treasury Treasury Treasury, especially in the function called “Unisvapv3svapCallball.” Another decision called Haka as a “smart attack”.

In another k post, Blocchain researcher II explained that the vulnerability was created because the contracts checked transactions. Usually should allow only transactions from Uniswap (Uni) Pool or other reliable source.

However, the contract relied on transient storage, temporary storage technique introduced into Etherum’s (El) EIP-1153 Upgrade, also known as Dencun tough forklift.

The problem? Transient storage resets only after the transaction was completed, but the contract was manipulated by important security data, it was still running. The hacker continued to deceive a contract in confidence in his false address.

.@ Leverateresir It was just hacked only for 354k dollars due to smart exploitation that targets transient storage in the contract in the unisvapv3svapcallballball treasury. I think this is a revolutionary housing – how did it happen? What was the root? Now disappears in the darkness. 🧵👇 https://t.co/vbkdrhgzvl

– II (@ SUPLABSII) 30. Marta 2025

They did that by rough forcing the unique empty address, allowing the contract to register their false address as legitimate. The hacker then used a custom contract to drag all the funds from the Sir.Trading Treasury.

Anonymous creator Sir.Trading, Xatarrer, recognized Attack After this happened, calling it “the worst news protocol could” seek feedback on the community on what to do next and expressed interest in renewal despite loss.

Since this attack can be among the first cases of hackers who take advantage of this new characteristic of Etherum in the real world, it asks questions about safety transient storage. Professional safety professionals Caution that if developers do not build stronger safeguards in their smart contracts, similar attacks may occur.

https://crypto.news/app/uploads/2023/12/crypto-news-biggest-crypto-hacks-option02.webp

2025-03-31 09:15:00