Welcome to Finance Redefined, your weekly dose of essential decentralized finance (DeFi) insights — a newsletter crafted to bring you the most significant developments from the past week.
The past week in DeFi saw an unprecedented chain of events unfold on Dec. 14 when a malicious actor exploited a vulnerability in the Ledger hardware wallet’s connector library. The exploit put the entire decentralized application (DApp) ecosystem at risk. On-chain analysts and DApps like SushiSwap and MetaMask advised users not to interact with their wallets at all.
Ledger released a patch within hours to contain the vulnerability, but the exploiter drained over $650,000 in assets from multiple victims. However, considering the number of wallets and DApps at risk, the drained amount was considerably lower than it could have been.
How the Ledger Connect hacker tricked users into making malicious approvals
The “Ledger hacker,” who siphoned at least $484,000 from multiple Web3 apps on Dec. 14, did so by tricking Web3 users into making malicious token approvals, according to the team behind blockchain security platform Cyvers.
According to public statements made by multiple parties involved, the hack occurred on the morning of Dec. 14. The attacker used a phishing exploit to compromise the computer of a former Ledger employee, gaining access to the employee’s node package manager javascript account.
Continue reading
Ledger patches vulnerability after multiple DApps using connector library were compromised
The front end of multiple decentralized applications (DApps) using Ledger’s connector, including Zapper, SushiSwap, Phantom, Balancer and Revoke.cash were compromised on Dec. 14. Nearly three hours after the security breach was discovered, Ledger reported that the malicious version of the file had been replaced with its genuine version around 1:35 pm UTC.
Ledger is warning users “to always Clear Sign” transactions, adding that the addresses and the information presented on the Ledger screen are the only genuine information. “If there’s a difference between the screen shown on your Ledger device and your computer/phone screen, stop that transaction immediately.”
Continue reading
Yearn.finance pleads with arb traders to return funds after $1.4 million multisig mishap
Decentralized finance protocol Yearn.finance is hoping arbitrage traders will return $1.4 million in funds after a multisignature scripting error drained a large amount of the protocol’s treasury.
“A faulty multisig script caused Yearn’s entire treasury balance of 3,794,894 lp-yCRVv2 tokens to be swapped,” according to a Dec. 11 GitHub post by Yearn contributor “dudesahn.”
Continue reading
OKX DEX suffers $2.7 million exploit after proxy admin contract upgrade
OKX decentralized exchange (DEX) suffered a $2.7 million hack on Dec. 13 after the private key of the proxy admin owner was reported to have been leaked.
On Dec. 13, the blockchain security firm SlowMist Zone posted on X (formerly Twitter) that OKX DEX “encountered an issue.” According to the report, the issue began on Dec. 12, 2023, at approximately 10:23 pm UTC after the proxy admin owner upgraded the DEX proxy contract to a new implementation contract, and the user began to steal tokens.
Continue reading
DeFi market overview
Data from Cointelegraph Markets Pro and TradingView shows that DeFi’s top 100 tokens by market capitalization had a bullish week, with most trading in the green on the weekly charts. The total value locked into DeFi protocols remained above $60 billion.
Thanks for reading our summary of this week’s most impactful DeFi developments. Join us next Friday for more stories, insights and education regarding this dynamically advancing space.
Nonfungible token (NFT) marketplaces transacted roughly $82 million in 2020 and a staggering $17.6 billion in 2021, indicating a rising demand and high user interest in NFTs. This meteoric rise of digital asset trading ranged from whimsical cartoon JPEGs to National Basketball Association trading cards, artwork, music and more. One such marketplace for collecting and…
The Ledger CEO said that until people begin using decentralized technology, control over assets and data will remain in the hands of the big tech giants and centralized intermediaries. The rise of decentralized services and hardware security wallets means that we no longer need to rely on intermediaries to manage our financial assets and data,…
The latest Cointelegraph Report explains everything you need to know about a potential spot Bitcoin ETF approval in the U.S., its impact on the market, and its significance for the crypto industry. 481 Total views 3 Total shares A wave of optimism around the potential approval of a spot Bitcoin exchange-traded fund (ETF) in the
The recently launched Korea Blockchain Enterprise Promotion Association has called on the state to adopt crypto and blockchain technology, local news agency Korea Joongang Daily reports Aug. 8. According to the report, the blockchain association has filed a demand with the government to regulate the new technology to benefit from its opportunities instead of focusing…
Many investment firms have launched crypto exchange-traded funds, but so far, none has found favor with the United States Securities and Exchange Commission. Firms keep trying, though, and this past week, two more tendered applications for crypto ETF-like products — if not pure-play Bitcoin ETFs have emerged. WisdomTree, an asset manager and ETF specialist, filed an…
The venture capital company is reportedly considering spearheading a fundraising campaign to raise $250 million to revive FTX. Own this piece of history Collect this article as an NFTTribe Capital, the San Francisco-based venture capital firm that previously invested in FTX before its collapse, is exploring the possibility of injecting new capital to revive the…
The new owners of LimeWire aim to "make things right" with the NFT marketplace and promises to give music artists freedom over their content. 321 Total views 19 Total shares Limewire, a popular peer-to-peer file-sharing website from the early 2000s that went defunct in 2010, is making a reentry in the market with a digital…
The two Polkadot parachains will communicate to create a unified DeFi environment. 1393 Total views 11 Total shares Cross-chain decentralized finance lending protocol Equilibrium is set to bring its U.S.-dollar-pegged stablecoin to Moonbeam, a Polkadot project building an Ethereum-like blockchain.DeFi projects building on Moonbeam will be able to use Equilibrium’s stablecoin as if it were…
Switzerland’s St.Galler Kantonalbank has launched Bitcoin and Ether trading for select customers, planning to add more coins in the future. Switzerland’s St.Galler Kantonalbank (SGKB), one of the largest banks in the country, is moving into cryptocurrency by introducing Bitcoin (BTC) and Ether (ETH) trading to its customers.SGKB has partnered with the global cryptocurrency-focused bank SEBA