MakerDAO

The attacker's address:
https://etherscan.io/address/0x2708cace7b42302af26f1ab896111d87faeff92f

DAO Maker vesting smart contracts had vulnerability that allowed a hacker to take ownership of the contract and withdraw the
tokens from it. Tokens of DeRace, Showcase, Ternoa, Coinspaid were affected. The attacker initialized the key parameters of init()
and changed the owner at the same time.

The attacker invoked emergencyExit() function to withdraw tokens at:
https://etherscan.io/tx/0xcb5be97496995d58da6f97491845040547b878e53a7b71f907a13408f3a54e5f
https://etherscan.io/tx/0x4c273c2403aafd97e4b553f0e381cf1c63e5f2efebbe2ded7642a06f2b68c879
https://etherscan.io/tx/0x1692a57f19b5e8e4bc6a372ac3c83c77cd4a1ea78414377ea66d3d59f4a7d2b7
https://etherscan.io/tx/0xdd0176475165b83c702d49a876d4dc888b73477ad8833582c72aa6ca5e0bacc3

The attacker sold tokens at:
https://etherscan.io/tx/0xbf38346aacf261f5e169a87ed874c33c21efb060c4a393e2b1443a3ac5d6e3fd
https://etherscan.io/tx/0x3436af2c84d67254a4b81adc350c91d1b98ae52b2ff84645d14d4245c2d08c27
https://etherscan.io/tx/0xc586a6b94e09556abf46ae3aa8cffa8e46dfcb0c22bce0b024d5e01743ceba9e
https://etherscan.io/tx/0x76163daf6cf0c815c02fb1a98f5c6283ee7a922cbad41218eb7a6452c91824c8

Quick Summary

Hackers exploit smart contract vulnerability in crowdfunding platform DAO Maker, stealing approximately $7 million in USD Coin
(USDC) from over 5,000 user accounts.




Details of the Exploit

The hackers exploited a smart contract vulnerability in DAO Maker, a platform aimed at raising funds for crypto projects. They
initially stole 10,000 USDC and then made 15 more transactions to acquire additional funds, totaling approximately $7 million. The
attack affected 5,251 user accounts. According to DAO Maker CEO Christoph Zaknun, the Strong Holder Offering (SHO) contract was
targeted because the number of deposits exceeded their expectations. Users with up to $900 in their accounts were reportedly
unaffected as the platform moved their funds into different wallets. DAO Maker has suspended all deposits pending a full Root
Cause Analysis. Blockchain intelligence firm CipherBlade is conducting an investigation into the hack and has identified a Binance
account associated with the attacker. DAO Maker is exploring compensation options for all affected users. 




Block Data Reference

The attacker's address:

https://etherscan.io/address/0xd8428836ed2a36bd67cd5b157b50813b30208f50




The contract used to perform the attack:

https://etherscan.io/address/0x1c93290202424902a5e708b95f4ba23a3f2f3cee#code




The transaction of the attack execution:

https://etherscan.io/tx/0xeefc22f2dbd8e1b886a7e59f66511e2735f4d04484f6258a9db6e661ed490f7b




The victim's contract:

https://etherscan.io/address/0x41B856701BB8c24CEcE2Af10651BfAfEbb57cf49#code




The transaction of the stolen funds transfer:

https://etherscan.io/tx/0xa8a61f779f514e59efa05a98152cf56c1942eff6cc56f506dab7c662ac1e775e