The DeFi industry is still being haunted by hacks and vulnerabilities, as seen by the addition of a new vanity address exploit to the list of DeFi victims, who, as a group, have altogether lost more than $1.6 billion in the 2022 alone.
After Vanity address exploit, an alert was publicly released by a company that specializes in blockchain security called PeckShield. In the alert, it stated that a hacker was discovered after stealing 732 ether (ETH), which is equivalent to approximately $950,000, from an address that was generated a generator for Ethereum vanity wallet addresses called Profanity. After emptying the wallet, the hackers moved the cryptocurrency to a cryptocurrency mixer called Tornado Cash, which had only just been authorized.
Also Read: FTX Exchange Eyes For $1B Funding
Vanity addresses are a kind of personalized cryptocurrency wallet address that is produced to contain words or certain characters specified by the holder of the wallet. Vanity addresses are also known as private keys. Recent breaches, on the other hand, have shown that the security of vanity email addresses is still in issue.
The decentralized exchange (DEX) aggregator 1inch Network issued a warning to crypto holders earlier in the month of September that their addresses were not secure if they were produced using vulgarity. The DEX made it clear to cryptocurrency holders who used vanity addresses that they needed to move their holdings as soon as possible. 1inch claims that the vanity address generator lacks safety since it uses a random 32-bit vector to seed 256-bit private keys. This indicates that the generator should not be utilized.
Also Read: Jesse Powell Resigns As CEO Of Kraken
ZachXBT, a blockchain investigator, has revealed that an exploitation of the vulnerability in Vulgarity has already let some hackers to get away with stealing digital assets worth $3.3 million. This announcement comes in response to the warnings issued by the DEX aggregator.
On September 20, a crypto market maker situated in the United Kingdom was the victim of an attack that resulted in losses of 160 million dollars. According to the findings of researcher Ajay Dhingra, the attack may have been carried out as a result of unauthorized access to the company’s hot wallet and subsequent manipulation of a flaw in the smart contract. The founder of the company and current Chief Executive Officer, Evgeny Gaevoy, issued a call to the attackers, stating that the company is willing to consider the vulnerability to be a “white hat hack.”