Millions Lost: Hedgey Finance Hit by Major Exploit

Two major exploits hit on-chain token infrastructure provider Hedgey Finance due to a bug in its token claims contract. The first attack on Ethereum's chain resulted in the theft of $1.9 million, while the second attack on Arbitrum's network led to the loss of $42.8 million. Hedgey Finance confirmed the incidents and is investigating, advising users to revoke token claim permission.

Hedgey Finance Suffers Multi-Million Dollar Exploit Due to Contract Vulnerability

On April 19, on-chain token infrastructure provider Hedgey Finance fell victim to a pair of exploits that exploited a bug in its token claims contract. The attacks, perpetrated on both the Ethereum (ETH) and Arbitrum (ARB) blockchains, resulted in the theft of millions of dollars in cryptocurrency.

Cybersecurity firm Cyvers first detected the initial attack on ETH's blockchain, where attackers made off with approximately $1.9 million. On-chain analytics revealed that the attackers' address had been funded through cryptocurrency exchange ChangeNOW, and the stolen funds were subsequently swapped into Maker's stablecoin DAI.

Hedgey Finance acknowledged the incident in a statement, confirming an ongoing investigation and urging users to revoke token claim permissions. The protocol allows for the creation of options markets for digital assets, enabling users to trade calls and puts on cryptocurrencies on EVM-compatible chains.

Shortly after the first attack, Cyvers reported a second on the ARB network, where hackers siphoned $42.8 million. Proceeds from both attacks were transferred to Bybit. Both attacks utilized the same vulnerability in Hedgey Finance's token claims contract.

The exploits highlight concerns raised by security experts regarding the need for DeFi protocols to prioritize safeguarding measures. As cryptocurrency gains mainstream adoption, on-chain security remains a critical issue for both established and emerging players in the industry.

However, it's worth noting that statistics indicate a potential decline in hacks. According to Peckshield, crypto exploits have decreased by 50% in recent months, leading to reduced losses for investors. White hat experts have also established a help desk to facilitate real-time reporting of hacks and disseminate information on exploit strategies.