BSC-Based 'Belt Finance' DeFi Protocol Exploited for $6.3 Million

Monday, 31/05/2021 | 09:46 GMT by Rachel McIntosh
  • Belt Finance joins the ranks of 7 other BSC-based DeFi protocols hacked so far this year.
BSC-Based 'Belt Finance' DeFi Protocol Exploited for $6.3 Million
FM

The Belt Finance protocol has become the latest Binance Smart Chain-based DeFi platform to lose millions to software exploitation.

According to a post on the Rekt blog, the attacker managed to drain the money through exploitation in the way that the protocol calculates the value of its collateral.

“An incorrect share valuation helps to add another notch to the now infamous flash loan exploit season on the BSC,” the post said. “Yet another Fork of a fork has rolled off the conveyor belt with $6.3M falling straight into the hands of the hacker.”

“Basically, the Issue Happened Because Belt Incorrectly Integrated with Ellipsis.”

May 30, SushiSwap core developer, Mudit Gupta described the incident in a Twitter thread. He explained that the attacker exploited several aspects of Belt’s operations to take out flash loans and then inflate the value of its pools; the attacker then repaid the loan, pocketing more than $6 million in the process.

“Basically, the issue happened because Belt incorrectly integrated with Ellipsis,” Gupta said. Ellipsis is a BSC-based Stablecoin decentralized exchange.

“A similar issue happened last month as well in belt finance, but at that time, the problem was a buggy integration with Venus. I wonder if belt has any bug-free integration (sic),” he continued. In addition, Venus is a lending protocol based on the Binance Smart Chain.

The Belt Finance exploitation marks the eighth time that a BSC-based protocol has been exploited by a hacker this year. Belt joins the ranks of Cream Finance, bEarn, Bogged Finance, Uranium Finance, Meerkat Finance, SafeMoon and Spartan Protocol.

Binance has reportedly sought analytical support from the cybersecurity firm, CipherTrace to prevent further exploitations from taking place on BSC.

The Belt Finance protocol has become the latest Binance Smart Chain-based DeFi platform to lose millions to software exploitation.

According to a post on the Rekt blog, the attacker managed to drain the money through exploitation in the way that the protocol calculates the value of its collateral.

“An incorrect share valuation helps to add another notch to the now infamous flash loan exploit season on the BSC,” the post said. “Yet another Fork of a fork has rolled off the conveyor belt with $6.3M falling straight into the hands of the hacker.”

“Basically, the Issue Happened Because Belt Incorrectly Integrated with Ellipsis.”

May 30, SushiSwap core developer, Mudit Gupta described the incident in a Twitter thread. He explained that the attacker exploited several aspects of Belt’s operations to take out flash loans and then inflate the value of its pools; the attacker then repaid the loan, pocketing more than $6 million in the process.

“Basically, the issue happened because Belt incorrectly integrated with Ellipsis,” Gupta said. Ellipsis is a BSC-based Stablecoin decentralized exchange.

“A similar issue happened last month as well in belt finance, but at that time, the problem was a buggy integration with Venus. I wonder if belt has any bug-free integration (sic),” he continued. In addition, Venus is a lending protocol based on the Binance Smart Chain.

The Belt Finance exploitation marks the eighth time that a BSC-based protocol has been exploited by a hacker this year. Belt joins the ranks of Cream Finance, bEarn, Bogged Finance, Uranium Finance, Meerkat Finance, SafeMoon and Spartan Protocol.

Binance has reportedly sought analytical support from the cybersecurity firm, CipherTrace to prevent further exploitations from taking place on BSC.

About the Author: Rachel McIntosh
Rachel McIntosh
  • 1509 Articles
  • 60 Followers
Rachel is a self-taught crypto geek and a passionate writer. She believes in the power that the written word has to educate, connect and empower individuals to make positive and powerful financial choices. She is the Podcast Host and a Cryptocurrency Editor at Finance Magnates.

More from the Author

CryptoCurrency