UK Markets close in 6 hrs 54 mins
  • FTSE 100

    7,759.60
    -5.55 (-0.07%)
     
  • FTSE 250

    19,900.98
    -134.41 (-0.67%)
     
  • AIM

    866.61
    -2.63 (-0.30%)
     
  • GBP/EUR

    1.1373
    -0.0031 (-0.27%)
     
  • GBP/USD

    1.2391
    -0.0004 (-0.0310%)
     
  • BTC-GBP

    18,822.83
    -29.48 (-0.16%)
     
  • CMC Crypto 200

    527.75
    +10.74 (+2.08%)
     
  • S&P 500

    4,070.56
    +10.13 (+0.25%)
     
  • DOW

    33,978.08
    +28.68 (+0.08%)
     
  • CRUDE OIL

    79.31
    -0.37 (-0.46%)
     
  • GOLD FUTURES

    1,939.60
    -6.00 (-0.31%)
     
  • NIKKEI 225

    27,433.40
    +50.84 (+0.19%)
     
  • HANG SENG

    22,069.73
    -619.17 (-2.73%)
     
  • DAX

    15,109.16
    -40.87 (-0.27%)
     
  • CAC 40

    7,073.90
    -23.31 (-0.33%)
     

How Attackers Made $15M From Staking Platform Helio After Ankr Exploit

An unknown group of attackers were able to drain some $15 million in liquidity from BNB Chain-based staking platform Helio on Friday morning after exploiting an oracle issue on the protocol, on-chain data shows.

HAY's staking pools continue to hold some $19 million in liquidity. (Helio)
HAY's staking pools continue to hold some $19 million in liquidity. (Helio)

Oracles are third-party services that fetch data from outside sources to within a certain blockchain. Oracles are extensively used by decentralized finance (DeFi) protocols to ensure their lending, borrowing and other services are accurate. Delays, however, could mean the loss of funds as malicious traders take advantage of price differences.

The Helio exploit came hours after the DeFi Ankr was attacked for $5 million. The Ankr attacker was able to mint 6 quadrillion aBNBc tokens, which they eventually turned into roughly 5 million USDC, as CoinDesk reported.

The Ankr exploit caused the prices of aBNBc tokens to plunge 99% in the minutes following the attack, setting the base for the second exploit on Helio. It is unclear at writing time if both the attacks were conducted by the same attacker or group of attackers.

Blockchain data shows that the Helio attacker acquired some 183,000 aBNBc tokens with 10 BNB during Asian morning hours on Friday. Delayed oracle data on Helio then allowed the attacker to borrow $16 million worth of HAY stablecoin.

The illicitly gained HAY was then swapped for 15 million Binance USD (BUSD), blockchain data cited by security firms BlockSec and PeckShield shows.

To view this content, you'll need to update your privacy settings.
Please click here to do so.

The HAY staking pool continues to hold some $19 million in locked funds, with developers stating in European afternoon hours that staked funds remained safe. Helio said in a separate tweet that it was working to mitigate the ongoing situation and asked users to avoid transacting in HAY.

Meanwhile, Binance froze some $3 million linked to the attack that were allegedly moved by the attackers to the exchange, founder Changpeng Zhao said in a Friday tweet.

Read more: DeFi Protocol Ankr to Reimburse Users Affected by $5M Exploit