DeFi Protocol Qubit Finance Loses $80M in Hack

Hackers stole 206,809 Binance Coin, roughly $80 million, from Qubit’s QBridge protocol, making it the seventh largest DeFi hack ever

article-image

Source: Shutterstock

share

key takeaways

  • “The exploit and loss of funds have a profound effect on thousands of real people,” the company said
  • Qubit is continuing to track the exploiter and monitor affected assets and has disabled a number of account management features until further notice

Hackers have stolen $80 million from DeFi protocol Qubit Finance, the firm confirmed on Friday. 

The attackers exploited the protocol to take 206,809 Binance coins through Qubit’s QBridge deposit function, making it the seventh largest DeFi hack ever, DeFiYield Rekt data shows. 

The QBridge protocol is an Ethereum-BSC (Binance Smart Chain) bridge that allows users to swap ERC-20 and BEP-20 tokens between the two blockchains. The protocol is implemented as a set of smart contracts built on top of the BSC.

The attacker essentially took advantage of a logical error in Qubit Finance’s code that allowed them to input malicious data and withdraw tokens on BSC when none were deposited on Ethereum, blockchain security firm CertiK explained

The decentralized money market platform tweeted a statement to notify the exploiter that they were aware of what was happening and proposed a direct negotiation before taking further action. 

Loading Tweet..

“The exploit and loss of funds have a profound effect on thousands of real people,” the company said. 

The team also contacted the exploiter to offer the maximum bounty as set by its program, it said in a post. It didn’t disclose how much the bounty would be, or if the hacker was receptive.  

Qubit is continuing to track the exploiter and monitor affected assets and has disabled a number of account management features until further notice. However, its claiming feature is still available, it said. 

“We are continuing to investigate and are in communications with Binance,” Qubit wrote. “Further updates and a full report will be shared as they become available.”

The company was not available for additional comment when requested by Blockworks. 


Don’t miss the next big story – join our free daily newsletter.

Tags

Upcoming Events

Hilton Metropole | 225 Edgware Rd, London

MON - WED, MARCH 18 - 20, 2024

Crypto’s premier institutional conference returns to London in March 2024. The DAS: London Experience:  Attend expert-led panel discussions and fireside chats  Hear the latest developments regarding the crypto and digital asset regulatory environment directly from policymakers and experts   Grow your network […]

Salt Lake City, UT

WED - FRI, OCTOBER 9 - 11, 2024

Pack your bags, anon — we’re heading west! Join us in the beautiful Salt Lake City for the third installment of Permissionless. Come for the alpha, stay for the fresh air. Permissionless III promises unforgettable panels, killer networking opportunities, and mountains […]

recent research

Frax report cover.jpg

Research

Frax saw continued development in its frxETH liquid staking derivative and Fraxlend money market throughout 2023. Frax V3 introduces an RWA strategy to drive utility to the protocol's cornerstone product, the FRAX stablecoin.

article-image

MicroStrategy discloses the purchase of 16,000 bitcoin throughout November

article-image

Digital asset firms face potential new regulatory landscape under Treasury’s proposed authority expansion

article-image

Uniswap Labs will be providing trading APIs to Talos investors through Fireblocks

article-image

DYDX supply will climb by up to 80% after the Friday unlock, but a couple factors make a massive sell-off appear unlikely

article-image

Switzerland-based Pando Asset, which has crypto products trading on the SIX Swiss Exchange, now looks to the US

article-image

Binance does not hold the required licenses to advertise and serve customers in the Philippines, the country’s securities regulator said