In the early hours of the morning (6:14 AM CET), DeltaPrime Blue on Arbitrum was the victim of a significant security breach, resulting in the theft of $5.98 million.
The hack was made possible due to a compromised private key, though the exact source of the breach is still under investigation.
DeltaPrime Blue exploited, this is the current status:
At 6:14 AM CET DeltaPrime Blue (Arbitrum) was attacked and drained for $5.98M. This was due to a compromised private key, the source of which is currently under investigation.
DeltaPrime Red (Avalanche) is not vulnerable…
— DeltaPrime (@DeltaPrimeDefi) September 16, 2024
Thankfully, DeltaPrime Red on Avalanche remains unaffected, as its implementation relies solely on multisignature wallets and cold storage, offering more robust protection. The DeltaPrime team has assured the community that the risk has been contained, and they are actively collaborating with @DeltaPrimeDefi to investigate the attack and recover the stolen assets.
The attack primarily targeted DeltaPrime’s liquidity pools, including #DPUSDC, #DPARB, #DPWETH, and #DPBTCb, all of which were drained. Initial estimates placed the loss at $4.5 million, but updated calculations now confirm the figure at $5.98 million.
🚨ALERT🚨Our system has detected multiple suspicious transactions involving @DeltaPrimeDefi on $ARB chain! (Still ongoing)
It seems that admin has lost the private key. Suspicious address still draining the pools! Affected pools so far are the #DPUSDC, #DPARB, #DPBTCb !… pic.twitter.com/8sXanAaCwe
— 🚨 Cyvers Alerts 🚨 (@CyversAlerts) September 16, 2024
Hacker Converts USDC Into ETH
The hacker swiftly converted the stolen USDC into ETH to circumvent any potential freezing of USDC assets. Hours later, the attacker transferred 1.2K ETH (valued at $2.8 million) to a new address, further complicating the asset recovery process.
🚨ALERT🚨@DeltaPrimeDefi attacker has moved 1.2K $ETH $2.8M to a new address hours ago👇https://t.co/UB56eYhnLu
Want to keep your company off our alerts radar? Learn how to secure your assets: Book a Demo 🚀 https://t.co/uUbFkFTp4h#CyversAlert https://t.co/yOmNZJyp5l
— 🚨 Cyvers Alerts 🚨 (@CyversAlerts) September 16, 2024
The attack was made possible when the hacker gained control of the admin’s private key, which allowed them to upgrade DeltaPrime’s contracts to malicious versions, giving them full control over the pools.
DeltaPrime has acknowledged the breach, confirming the $5.93 million loss on their DeltaPrime Blue platform. The team remains focused on retrieving the stolen funds and continues to share updates as more information becomes available.
🚨 Delta Prime Hack – Current Situation & Updates 🚨
Earlier today, we flagged a security incident on @DeltaPrimeDefi admin keys on the @arbitrum network, resulting in a loss of $5.93 M.
Here's the breakdown 🧵 https://t.co/yOmNZJyp5l
— 🚨 Cyvers Alerts 🚨 (@CyversAlerts) September 16, 2024
Disclosure: This is not trading or investment advice. Always do your research before buying any Metaverse crypto coins.