DEX聚合器1英寸從其智能合約中恢復了500萬美元的大部分

上週，分散的交易所（DEX）聚合器1英寸對其智能合約遭到嚴重違反。但是，在與黑客談判之後，交易所成功地收回了500萬美元被盜的大部分。

Decentralized exchange (DEX) aggregator 1inch experienced a critical breach of its smart contracts last week. However, following negotiations with the hacker, the exchange successfully recovered most of the $5 million stolen.

上週，分散的交易所（DEX）聚合器1英寸對其智能合約遭到嚴重違反。但是，在與黑客談判之後，交易所成功地收回了500萬美元被盜的大部分。

This marks a rare instance in which an exploiter returned the stolen assets voluntarily.

這標誌著一個罕見的實例，其中剝削者自願退還了被盜資產。

According to WuBlockchain, citing Decurity’s postmortem report, the hacker returned most of the funds after discussions and a generous bug bounty.

據伍布克鏈（Wublockchain）稱，Drcurity的驗屍報告，黑客在討論和慷慨的漏洞賞金之後退還了大部分資金。

This incident, which occurred on March 5, was attributed to a vulnerability in an outdated version of the platform’s smart contract.

該事件發生於3月5日，歸因於該平台智能合約過時的版本中的漏洞。

According to 1inch’s blog post from March 7, the team detected the incident at approximately 6 PM UTC on March 5.

根據3月7日的1英寸博客文章，該團隊於3月5日下午6點檢測到該事件。

Attackers exploited Fusion v1, an obsolete platform component, and its outdated logic to execute unintended transactions.

攻擊者利用了過時的平台組件Fusion V1及其過時的邏輯來執行意外交易。

Notably, no end users were directly affected, as the attack targeted a third-party market maker, TrustedVolumes.

值得注意的是，由於攻擊是針對第三方做市商TrustedVolumes的攻擊，任何最終用戶都沒有受到直接影響。

Upon discovering the breach, 1inch swiftly redeployed its resolver contracts as a precautionary security measure, preventing further exploits.

發現違規後，1英寸迅速將其解析器合同重新部署為預防性安全措施，以防止進一步的利用。

According to Decurity’s report, the hacker posted an on-chain message following the attack. They requested a bug bounty in exchange for returning the stolen funds.

根據Decurity的報告，黑客在攻擊後發布了一條鏈信息。他們要求一個漏洞賞金，以換取返回被盜資金。

TrustedVolumes engaged in negotiations with the attacker, which ultimately led to a resolution.

TrustedVolumes與攻擊者進行談判，最終導致了決議。

This resolution marks a rare instance in which a DeFi exploit resulted in the exploiter returning the stolen assets voluntarily. It also highlights the growing trend of ethical hacking and bug bounty programs in the DeFi industry.

該分辨率標誌著一種罕見的實例，在這種情況下，Defi利用導致剝削者自願返回被盜資產。它還強調了Defi行業中道德黑客和漏洞賞金計劃的增長趨勢。

This incident marks the second time in six months that 1inch has faced a security breach. In October, the platform suffered a front-end compromise due to a supply chain attack.

該事件標誌著1英寸六個月來第二次面臨安全漏洞。 10月，由於供應鏈攻擊，該平台遭受了前端妥協。

Also, it highlights the persistent risks that DeFi protocols encounter. The latest hack is another reminder of the necessity for continuous monitoring and rapid response mechanisms to safeguard users and assets.

此外，它突出了Fefi協議遇到的持續風險。最新的黑客提醒您需要進行連續監控和快速響應機制來保護用戶和資產的必要性。

Despite the recovery, the 1INCH price has only gone up by a modest 1.12% since Sunday’s session opened and was trading for $0.23 as of this writing.

儘管恢復了，但自周日的會議開幕以來，1英寸的價格僅上漲了1.12％，並且在撰寫本文時的交易價格為0.23美元。

This incident highlights the importance of continuous smart contract audits and proactive vulnerability detection. It also indicates the need for stronger validation mechanisms to prevent similar incidents in the future.

該事件突出了連續的智能合同審核和主動脆弱性檢測的重要性。這也表明需要更強大的驗證機制來防止將來類似的事件。