Wasabi Protocol 更新安全事件处理进展:尚未确认用户赔付最终方案
深潮 TechFlow 消息,5 月 09 日,Wasabi Protocol 发布安全事件更新,其中指出攻击者利用其 AWS 基础设施中的 Spring Boot Actuator 配置漏洞,窃取了控制 EVM 智能合约的私钥,并从相关合约中盗取约 480 万美元用户资金及 90 万美元协议金库资金,总损失约 570 万美元。
攻击链起始于一台用于分析的公网服务器,其 Actuator heap dump 未受到正常密码保护,导致攻击者获取了另一服务器凭证,并最终获得智能合约私钥控制权,此次事件仅影响 EVM 部署,包括以太坊、Base、Blast及 Berachain 上的部分金库,Solana 部署及 Prop AMM 未受影响。目前尚未就用户赔付方案给出最终更新方案,但“让所有受损用户得到补偿”仍是团队最高优先事项,未来将于 Discord 社群发布调查进展更新。
Disclaimer: OKX Orbit content is provided for informational purposes only. Learn more
Replies
Related Flash News
ChainCatcher•55m agoGoldman Sachs liquidated its XRP and Solana ETF holdings in Q1 and still holds more than $700 million in Bitcoin ETFs
币界网•1h agoBybit lists GWEIUSDT perpetual contract, supporting up to 25x leverage
ChainCatcher•4h agoHyperliquid's two major market makers simultaneously withdrew BTC liquidity, reducing their positions by nearly $100 million in total
币界网•4h agoAAVE恢复WETH借贷,Kelp DAO恢复进展
币界网•4h agoHyperliquid's two major market makers simultaneously withdrew BTC liquidity, and Wintermute and Auros Global combined to reduce their positions by nearly $100 million
Odaily•7h agoTom Lee: Rising oil prices suppress ETH's short-term trend, and structural drivers still point to strengthening in 2026
ChainCatcher•7h agoTom Lee: Ethereum's selling pressure is mainly due to the rise in oil prices, and if oil prices fall, Ethereum will rebound
ChainCatcher•8h agoTokenized ETF on-chain market capitalization exceeded $430 million, Ondo Finance IVVon rose about 150% monthly
TechFlow•8h agoWEEX 上线 SWCH Staking,APR 最高 20%
ChainCatcher•8h agoPeckShield: Verus hackers have exchanged stolen assets for approximately 5402.4 ETH