Ad
CryptoSlate on X
Get the latest crypto news and expert insights. Delivered to you daily.
Join 50k followers
 Ad
News
Tether reports record $4.52 billion profit in Q1 despite shrinking market share Liquidation heatmap shows volatility ahead as Bitcoin drops to $57k Changpeng Zhao says crypto has entered new phase where ‘compliance is super important’ Google US market share drops below 80%, lowest since 2009 as Bing AI usage spikes Aevo and Pyth lead May’s $3 billion crypto token unlock wave
Avalanche project Stars Arena suffers $2.9M exploit, leaving smart contract with just $0.051 Avalanche project Stars Arena suffers $2.9M exploit, leaving smart contract with just $0.051 Monika Ghosh · 7 months ago · 2 min read
NewsCrime

Avalanche project Stars Arena suffers $2.9M exploit, leaving smart contract with just $0.051

Stars Arena has advised users to refrain from depositing funds on the platform, which is still under DDOS attack.

Monika Ghosh
Oct. 7, 2023 at 3:16 pm UTC
2 min read
Updated: Oct. 7, 2023 at 3:16 pm UTC
Avalanche project Stars Arena suffers $2.9M exploit, leaving smart contract with just $0.051

Cover art/illustration via CryptoSlate. Image includes combined content which may include AI-generated content.

Hackers exploited a vulnerability on Oct 7 and drained $2.9 million worth of Avalanche (AVAX) tokens from the smart contract of Stars Arena, an Avalanche-based social token platform. The vulnerable smart contract was used to secure tokens on the platform.

In a post on X, Star Arena noted that the platform is still under a Distributed Denial of Service (DDoS) attack. In a DDOS attack, bad actors disrupt the regular functioning of a platform by overwhelming it with a flood of traffic.

Star Arena added:

“We are working on a solution to get everyone’s funds recovered and have the Arena move forward.”

Blockchain security firm PeckShield first identified the attack and attributed it to a reentrancy issue. A reentrancy issue refers to a security flaw that allows an external contract or attacker to repeatedly call back into the vulnerable contract’s functions before the previous calls have been completed.

According to PeckShield, the reentrancy issue allowed the attackers to represent chat room access and sell tickets at exorbitant prices reaching as high as $2,740 each.

While the breach did not impact tokens in user wallets, users cannot realize any value by selling tickets they own.

The exploited vulnerability has depleted the value locked in Stars Arena’s smart contract to just $0.051, according to DefiLlama data. The platform has cautioned users against depositing any funds on the platform.

Previous attack

Stars Arena, an iteration of FriendTech, offers tokens for purchase, granting access to individual chat rooms. These tokens typically follow a bonding curve, increasing in price as more users acquire them. Transaction fees on such platforms are relatively high, with FriendTech imposing a 10% fee on each transaction, divided between the app and the platform’s owner.

Stars Arena had previously faced a smaller vulnerability that allowed the unauthorized draining of AVAX coins from its smart contract. However, since the issue was challenging to exploit, few funds were lost before it was rectified.

At the time, Ava Labs CEO Emin Gun Sirer dismissed security concerns as malicious actors spreading “FUD” (fear, uncertainty, and doubt).

Posted In: , Crime, Hacks
Author

Monika Ghosh

Reporter at CryptoSlate

In 2020, Monika immersed herself in crypto, maintaining skepticism yet firmly believing blockchain could address key issues like financial disparity and transparency. A book-lover, she's also a passionate food enthusiast.

Editor Editor

News Desk

Editor at CryptoSlate

CryptoSlate is a comprehensive and contextualized source for crypto news, insights, and data. Focusing on Bitcoin, macro, DeFi and AI.

Latest Avalanche Stories
Aevo and Pyth lead May’s $3 billion crypto token unlock wave

Aevo and Pyth lead May’s $3 billion crypto token unlock wave

Tokens 11 hours ago

The significant crypto unlocks scheduled for May could have significant impact on the market.

Bitcoin’s crash to $64k causes meltdown for alts

Bitcoin’s crash to $64k causes meltdown for alts

Crypto 3 weeks ago

The decline mirrored a broader selloff across asset classes amid heightened global economic uncertainties and geopolitical risks.

Coinbase to store more of its $220 million USDC holdings on Base

Coinbase to store more of its $220 million USDC holdings on Base

Crypto 1 month ago

As of press time, the exchange only holds 17% of its USDC on Base.

Memecoin volumes are just vanity metrics for desperate blockchains

Memecoin volumes are just vanity metrics for desperate blockchains

Op-Ed 1 month ago

Memecoin activity fails to stimulate true adoption as Solana, Avalanche gamble on gambling.

Latest Press Releases
View All

Disclaimer: Our writers' opinions are solely their own and do not reflect the opinion of CryptoSlate. None of the information you read on CryptoSlate should be taken as investment advice, nor does CryptoSlate endorse any project that may be mentioned or linked to in this article. Buying and trading cryptocurrencies should be considered a high-risk activity. Please do your own due diligence before taking any action related to content within this article. Finally, CryptoSlate takes no responsibility should you lose money trading cryptocurrencies.

Latest Alpha

In this article

Avalanche AVAX (24h)
$32.8299 +1.51%
Vol: $574.47M MCap: $12.45B

Avalanche is an umbrella platform for launching decentralized finance (DeFi) applications, financial assets, trading and other services.

More about Avalanche
 Ad
CryptoSlate on X x.com/cryptoslate
Follow us on X for instant crypto news and insights updates.
Join 50k followers
 Ad