Crypto Updates

OKX DEX suffers $2.7M exploit after proxy admin contract upgrade

OKX DEX suffers $2.7M exploit after proxy admin contract upgrade


The decentralized exchange (DEX) of the cryptocurrency exchange OKX (a.k.a OKX DEX) suffered a $2.7 million hack on Dec. 13 after the private key of the proxy admin owner was reported to be leaked. 

On Dec. 13, the blockchain security firm SlowMist Zone posted on X, formerly known as Twitter, that OKX DEX “encountered an issue.” According to the report, the issue began on Dec. 12, 2023, at approximately 22:23:47 after the proxy admin owner upgraded the DEX proxy contract to a new implementation contract and the user began to steal tokens.

Then, at approximately 23:53:59, the proxy admin owner made another upgrade to the contract, and the user continued to exploit tokens. SlowMist’s analysis at the time said the attack “may be” the result of the key of the proxy admin owner being leaked.

The DEX Proxy was subsequently removed from the platform’s trusted list.

Scopescan, an on-chain analysis firm, also reported the attack saying users were reporting the event. It reported that after contacting the DEX, it was told that an old “abandoned” contract was attacked but has been located and stopped. 

Additionally the OKX DEX said any user losses affected by the hack will be “fully borne.”

Related: Aerodrome and Velodrome DeFi platforms experience front-end hacks

According to a post from the blockchain security company PeckShield, the total loss of the OKX DEX attack was around $2.7 million worth of various cryptos. PeckShield advised users to “please revoke allowances” if there are any. 

In light of the hack one X user posted a reminder that just because something is “decentralized” doesn’t mean that assets are necessarily safe: 

Click Here to Read the Full Original Article at Cointelegraph.com News…