DeFi Lending Protocol Agave's AGVE Plunges Over 20% Amid Exploit Investigation

Hundred Finance, another lending protocol on the Gnosis chain, was also exploited in an apparent “re-entrancy” attack, according to a blockchain security researcher.

AccessTimeIconMar 15, 2022 at 7:26 p.m. UTC
Updated Mar 15, 2022 at 7:49 p.m. UTC

Michael Bellusci is CoinDesk's crypto payments reporter.

AGVE, the token of non-custodial money market and lending protocol Agave, plunged over 20% on Tuesday after the company said it’s looking into an exploit.

  • “Agave is currently investigating an exploit on the agave finance protocol. We will update you as soon as we know more,” the DAO said in a tweet on Tuesday afternoon. “Contracts have been paused until we figure out how to resolve the situation."
  • Hundred Finance, like Agave a multi-chain lending protocol on the Gnosis chain, was also attacked, according to a tweet from the platform. “Unfortunately Hundred and Agave have both been exploited on Gnosis chain today,” Hundred wrote. “Gnosis team is aware, investigation is ongoing. All the Hundred markets on all chains paused for now.”
  • Hundred Finance’s token, HND, was modestly lower in Tuesday action.
  • According to blockchain security researcher Mudit Gupta, the attack vector in both cases was a “re-entrancy attack”
  • That’s made possible because “the official bridged tokens on Gnosis are non-standard and have a hook that calls the token receiver on every transfer,” Gupta wrote. According to Gupta, the attackers were able borrow back more than the collateral they were depositing, and continually repeat the process by repeatedly re-entering the system.

Read more about

DISCLOSURE

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is a media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. CoinDesk is an independent operating subsidiary of Digital Currency Group, which invests in cryptocurrencies and blockchain startups. As part of their compensation, certain CoinDesk employees, including editorial employees, may receive exposure to DCG equity in the form of stock appreciation rights, which vest over a multi-year period. CoinDesk journalists are not allowed to purchase stock outright in DCG.

CoinDesk - Unknown

Michael Bellusci is CoinDesk's crypto payments reporter.

CoinDesk - Unknown

Michael Bellusci is CoinDesk's crypto payments reporter.

Trending

1
CoinDesk - Unknown
El Salvador Purchases 80 Additional Bitcoin at $19K, President Bukele Says

The last purchase by the Central American country had been in May.

CoinDesk - Unknown
2
CoinDesk - Unknown
VanEck Files New Application for Spot Bitcoin ETF

The application comes about eight months after the SEC rejected the investment firm’s last application.

CoinDesk - Unknown
3
CoinDesk - Unknown
First Mover Asia: Speculating on Tokenized Carbon Offsets Won't Help Climate Crisis, Says Consultant; BTC Falls Under $19K Amid Wider Crypto Woes

A significant number of carbon credits are from projects 8-10 years old; Ether and other major altcoins plummet.

CoinDesk - Unknown
4
CoinDesk - Unknown
Crypto Lender Celsius Network Exploring Options to ‘Preserve and Protect’ Assets

Celsius Network is consulting with experts to try to reduce the fallout from its mid-June swoon.

CoinDesk - Unknown