NewsletterEthereum Layer 2 Rho Markets Suffers $7.6M Security Breach
Highlights
- Rho Markets loses $7.6M in funds due to oracle misconfiguration on Scroll's Ethereum Layer 2.
- Malicious actor offers to return $7.6M, claims breach was due to RhoMarketsHQ's system flaw.
- $USDC and $USDT pools compromised in RhoMarketsHQ breach, impacting multi-network transactions.
Rho Markets has disclosed a security breach on its platform that runs on the Ethereum Layer 2 solution, Scroll. The attack was on the Oracle controls and this led to the shutting down of the platform temporarily.
Rho Markets Suffers $7.6M Security Breach
Rho Markets, a lending protocol on Scroll, has noted some suspicious activities on its platform and therefore stopped its operations. The root cause of the incident was determined to be an unauthorized access by a hacker through a Oracle control vulnerability.
Some of the affected pools are the USDC and USDT, and the current balance held by the attacker is around $7.6 million in multiple chains. The platform has come out to assure the users that majority of the pools are still safe and that they will reopen as soon as the problem is sorted out.
Scroll was notified of a potential exploit within our ecosystem.
After verification with the RhoMarket team, we initiated a coordinated response. To thoroughly assess the situation, Scroll decided to temporarily delay the finalization of the chain.
We have confirmed that the…
— Scroll 📜 (@Scroll_ZKP) July 19, 2024
Scroll, the Ethereum Layer 2 solution provider, verified the attack within the RhoMarkets ecosystem. Upon confirming the incident with the Rho Market’s team, Scroll mobilized the response and postponed the chain’s finalization to ensure that it could be investigated properly. Subsequently, Scroll has established that the issue was specific to the application and the finalization is no longer being held up. According to the report, RhoMarkets is at the forefront of efforts to contain and counter the security breach.
Attacker’s Message and Intent
Blockchain detective ZachXBT revealed that the hacker contacted RhoMarkets through an on-chain message. The message stated:
“Hello RHO team, our MEV bot profited from your price oracle misconfiguration. We understand that the funds belong to users and are willing to fully return. But first, we would like you to admit that it was not an exploit or a hack, but a misconfiguration on your end. Also, please provide what you are going to do to prevent it from happening again.”
This shows that the attacker is willing to return the funds if RhoMarkets admits to the misconfiguration. In response to the breach, Scroll has advised all users to revoke all approvals to Scroll’s contracts until further notice.
Increasing Hacks in the Crypto Space
The incident at RhoMarketsHQ is one of the many security issues that are currently affecting the DeFi industry. Other platforms include LI.FI has also witnessed cases of security incidences with LI.FI has recently endured a loss of more than $9. 7 million due to similar vulnerability.
Concurrently, WazirX, a crypto exchange platform has not been spared and has been dented by a hack that saw the platform lose $230 million. The platform has made a police complaint, shared details with FIU and CERT-In, and has been working with over 500 exchanges to get the assets back.
Read Also: WazirX Hack Update: Firm Working With 500 Exchanges And FIU To Recover Funds
Why Trust CoinGape
CoinGape has covered the cryptocurrency industry since 2017, aiming to provide informative insights Read more… to our readers. Our journal analysts bring years of experience in market analysis and blockchain technology to ensure factual accuracy and balanced reporting. By following our Editorial Policy, our writers verify every source, fact-check each story, rely on reputable sources, and attribute quotes and media correctly. We also follow a rigorous Review Methodology when evaluating exchanges and tools. From emerging blockchain projects and coin launches to industry events and technical developments, we cover all facets of the digital asset space with unwavering commitment to timely, relevant information.
Premium Partners
Delivered every day.
- Insights that move markets
- 100,000 active subscribers
Related Articles
- Breaking: Bitcoin Gains State Adoption as Texas Becomes First U.S. State to Purchase BTC
- Rate Cut Advocate Kevin Hassett Emerges as Trump’s Top Pick For Fed Chair
- Breaking: Crypto Platform Polymarket To Operate As A U.S. Exchange as CFTC Issues Key Order
- SEC Panel to Discuss Regulatory Changes for Tokenized Equities on Dec. 4
- December Fed Rate Cut Odds Surge To 85% Following PPI Release
- Monad Price Prediction Amid Mainnet Debut — Is a Bigger Breakout Ahead?
- Chainlink Price Could Soar to $15 as ETF Listing Nears
- Will Cardano Price Rebound as Hoskinson Hints at a TVL Surge After Midnight Launch?
- Ethereum Price Holds $2,900 Amid Massive ETF Inflows and BlackRock Purchase
- Sui Price Surges 12%: Could This Mark the Start of a Bullish Trend?
- Is Bitcoin Price Set for Major Recovery as December Rate Cut Chances Hit 80.9%?
