EOS DApp Smart Contract Exploit Pays Out $200K to Hacker

A series of smart contract exploits have seen hackers abscond with over $600,000 worth of EOS over the last week, raising questions regarding the security of the $4 billion “Ethereum killer” EOS blockchain.

Smart contract weaknesses in EOS-based gambling dApp EOBet have allowed hackers to manipulate the outcome of blockchain dice rolls, capturing 126,000 EOS in just 36 hours.

An official announcement from EOSBet explains the manner in which the attack was executed—by exploiting a flaw in smart contract code, the hacker was able to place bets without transferring EOS to the contract, while still capturing payouts from successful predictions.

https://platform.twitter.com/widgets.js

Smart Contract Flaws Run Rampant in EOS dApp Ecosystem

The EOSBet platform isn’t the only EOS dApp to lose out to smart contract security flaws over the last week, however—the EOSBet team was quick to mock competitor DEOS Games for the loss of $24,000 in EOS due to a smart contract exploit in a tweet that has since been deleted:

“DEOS Games, a clone and competitor of our dice game, has suffered a severe hack today that drained their bankroll. As of now every single dice game and clone site has been hacked. We have the biggest bankroll, the best developers, and a superior UI. Play on.”

EOS transaction records show a DEOS Games user receiving jackpot payouts from the platform 24 times in a row, yielding 4,728 EOS in less than an hour.

https://platform.twitter.com/widgets.js

EOSBet has announced that new security measures such as more robust internal code testing, third party auditing, and improved smart contract monitoring will prevent further smart contract exploits. The EOS security ecosystem has remained a prime target for enterprising hackers both black and white hat—to date, EOS bug bounties have paid out more than $417,000 in 2018 thus far.

The post EOS DApp Smart Contract Exploit Pays Out $200K to Hacker appeared first on CryptoSlate.


Posted

in

,

by

Tags:

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.