Prisma Finance 遭黑客攻击损失 1160 万美元；黑客要求道歉并提供团队身份以退回资金

DeFi 平台 Prisma Finance 面临 1160 万美元的漏洞利用后果，其中 54 万美元仍面临风险，因为“白帽”黑客要求公开道歉并要求团队确认资金返还。 Prisma 的核心贡献者概述了恢复工作，而黑客则坚持召开在线会议以追究责任。该事件凸显了 DeFi 的安全挑战以及彻底的智能合约审计和快速响应机制的重要性。

DeFi Platform Prisma Finance Hit with $11.6 Million Exploit, Hacker Demands Public Apology and Team Identification for Fund Return

DeFi 平台 Prisma Finance 遭受 1160 万美元攻击，黑客要求公开道歉并确认团队身份以退回资金

By The Crypto Times

作者：加密时代

[Location, Date] - Prisma Finance, a decentralized finance (DeFi) platform, has become the latest victim of a cyberattack, losing $11.6 million in a malicious exploit. The incident, which has left $540,000 in limbo, has taken a dramatic turn as the "white hat" hacker behind the attack demands a public apology and the identification of team members involved in the platform's security in exchange for the return of the stolen funds.

[地点、日期] - 去中心化金融 (DeFi) 平台 Prisma Finance 已成为网络攻击的最新受害者，在恶意利用中损失了 1160 万美元。这起事件导致 54 万美元陷入困境，但事态发生了戏剧性的转变，攻击背后的“白帽”黑客要求公开道歉并查明参与平台安全的团队成员的身份，以换取归还被盗资金。

Frank, Prisma's core contributor, has outlined the platform's efforts to recover the stolen assets and prioritize user safety. The exploit originated from flaws in the MigrateTroveZap contracts, impacting 14 accounts. Five of these accounts remain "at risk" with over $500,000 in open positions.

Prisma 的核心贡献者 Frank 概述了该平台为追回被盗资产并优先考虑用户安全所做的努力。该漏洞源自 MigrateTroveZap 合约中的缺陷，影响了 14 个账户。其中五个账户仍处于“风险”状态，未平仓头寸超过 50 万美元。

Prisma has responded to the attack by proposing a reduction in liquidity and staked revenue allocations to bolster its reserves. The team has emphasized that the exploited contract is isolated from the platform's core protocol, minimizing potential risks to users.

Prisma 针对此次攻击提出了减少流动性并押注收入分配以增强其储备的建议。该团队强调，被利用的合约与平台的核心协议是隔离的，最大限度地减少了用户的潜在风险。

Despite Prisma's recovery efforts, the hacker has insisted on an online conference as a condition for returning the stolen funds. The hacker demands an apology and accountability from the platform's team. This development has further escalated the dispute, with Prisma questioning the hacker's sincerity, citing fund diversions to Ethereum (ETH) via the anonymity-enhancing Tornado Cash protocol.

尽管 Prisma 做出了恢复努力，但黑客仍坚持召开在线会议作为归还被盗资金的条件。黑客要求平台团队道歉并承担责任。这一事态发展进一步加剧了争议，Prisma 质疑黑客的诚意，称资金通过增强匿名性的 Tornado Cash 协议转移到了以太坊 (ETH)。

The incident has significantly impacted Prisma's liquidity, with its total value locked (TVL) plummeting from $220 million to $86.7 million, according to data from DefiLlama. The attack underscores the ongoing security challenges facing the DeFi sector, highlighting the need for thorough smart contract audits and swift response mechanisms.

DefiLlama 的数据显示，该事件严重影响了 Prisma 的流动性，其锁定总价值 (TVL) 从 2.2 亿美元骤降至 8670 万美元。此次攻击凸显了 DeFi 领域持续面临的安全挑战，凸显了彻底的智能合约审计和快速响应机制的必要性。

Prisma is committed to stabilizing its platform and restoring user trust amidst its ongoing recovery efforts. The platform's team is actively addressing the exploit and implementing measures to prevent similar incidents in the future. The incident serves as a reminder of the importance of vigilance and robust security practices in the DeFi industry.

Prisma 致力于在持续的恢复工作中稳定其平台并恢复用户信任。该平台的团队正在积极解决该漏洞，并采取措施防止未来发生类似事件。该事件提醒人们在 DeFi 行业保持警惕和稳健的安全实践的重要性。