Socket recovers over 1,000 ETH after Bungee exploit incident last week

Theon Barrett

Socket recovers over 1,000 ETH after Bungee exploit incident last week

Jan 23, 2024 7:59 AM

Blockchain, Crypto Projects, Crypto Scams & Alerts, Crypto Security, Ethereum, Wallet

Socket Recovers $2.3 Million in Ether Following Exploit

Interoperability protocol Socket announced that it has successfully recovered 1,032 ether (worth $2.3 million) after an exploit on its Bungee bridge protocol. The funds involved in the incident on January 16th have been retrieved, and Socket plans to release a recovery and distribution plan for affected users soon.

Security Incident and Stolen Funds

Last week, a security incident impacted wallets with infinite approvals to Socket contracts. In response, the project paused the affected contracts. However, blockchain security firm PeckShield estimated that at least $3.3 million worth of funds were stolen in the exploit. The hack exploited incomplete validation of user input to steal funds from users who had approved the vulnerable SocketGateway contract.

The Exploit and User Approvals

The exploit targeted users who had over-approved Socket, allowing the attacker to drain assets up to the limit of their approval. For example, if a user bridged $1,000 but approved the bridge for $2,000, the remaining $1,000 of unutilized approvals could be drained in the attack. To prevent this, users would need to revoke their approvals.

Hot Take: Socket Recovers Stolen Funds After Security Incident

Read Disclaimer

This page is simply meant to provide information. It does not constitute a direct offer to purchase or sell, a solicitation of an offer to buy or sell, or a suggestion or endorsement of any goods, services, or businesses. Lolacoin.org does not offer accounting, tax, or legal advice. When using or relying on any of the products, services, or content described in this article, neither the firm nor the author is liable, directly or indirectly, for any harm or loss that may result. Read more at Important Disclaimers and at Risk Disclaimers.

Socket has successfully recovered $2.3 million in ether following an exploit on its Bungee bridge protocol. The project plans to distribute the recovered funds to affected users soon. Last week’s security incident resulted in stolen funds worth at least $3.3 million, as an attacker exploited incomplete validation of user input. Users who had over-approved Socket were targeted in the exploit, allowing the attacker to drain assets up to the approved limit. To protect against such attacks, users should revoke unnecessary approvals. Socket’s recovery of funds is a positive step towards mitigating the impact of the security incident.

Theon Barrett

Author – Contributor at Lolacoin.org | Website

Theon Barrett shines as a distinguished crypto analyst, accomplished researcher, and skilled editor, making significant strides in the field of cryptocurrency. With an astute analytical approach, Theon brings clarity to intricate crypto landscapes, offering insights that resonate with a broad audience. His research prowess goes hand in hand with his editorial finesse, allowing him to distill complex information into accessible formats. Theon’s work serves as a guiding light for both experienced enthusiasts and newcomers, providing well-researched perspectives that empower informed decision-making in the ever-evolving realm of cryptocurrencies.