<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	xmlns:media="http://search.yahoo.com/mrss/"
>

<channel>
	<title>Curve Finance - Coinfea</title>
	<atom:link href="https://coinfea.com/tag/curve-finance/feed/" rel="self" type="application/rss+xml" />
	<link>https://coinfea.com</link>
	<description>Crypto and Blockchain News</description>
	<lastBuildDate>Mon, 19 Aug 2024 12:53:48 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	

<image>
	<url>https://coinfea.com/wp-content/uploads/2022/04/cropped-Cfeawhite-1-32x32.png</url>
	<title>Curve Finance - Coinfea</title>
	<link>https://coinfea.com</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>Curve Finance suffers exploit, hacker returns part of the loot</title>
		<link>https://coinfea.com/curve-finance-suffers-exploit-hacker-returns-part-of-the-loot/</link>
		
		<dc:creator><![CDATA[Damilola Lawrence]]></dc:creator>
		<pubDate>Mon, 31 Jul 2023 09:09:51 +0000</pubDate>
				<category><![CDATA[Cryptocurrency News]]></category>
		<category><![CDATA[Curve Finance]]></category>
		<guid isPermaLink="false">https://coinfea.com/?p=5584</guid>

					<description><![CDATA[<p>On July 30, Curve Finance, a prominent player in the decentralized finance (DeFi) sector, experienced a significant exploit on several of its stable pools. The exploit was traced back to specific versions of the Vyper compiler, a smart contract programming language for the Ethereum Virtual Machine (EVM). The affected versions were 0.2.15, 0.2.16, and 0.3.0. [&#8230;]</p>
<p>The post <a href="https://coinfea.com/curve-finance-suffers-exploit-hacker-returns-part-of-the-loot/">Curve Finance suffers exploit, hacker returns part of the loot</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></description>
										<content:encoded><![CDATA[<p>On July 30, Curve Finance, a prominent player in the decentralized finance (DeFi) sector, experienced a significant exploit on several of its stable pools. The exploit was traced back to specific versions of the Vyper compiler, a smart contract programming language for the Ethereum Virtual Machine (EVM). The affected versions were 0.2.15, 0.2.16, and 0.3.0. This incident led to losses estimated at $24 million at the time of reporting.</p>



<p>The exploit mechanism, known as &#8220;malfunctioning reentrancy locks,&#8221; allowed the attacker to bypass the intended safeguards and drain funds from the targeted contracts. The fallout from this incident was significant, affecting several other DeFi projects that relied on Curve&#8217;s stable pools. These included decentralized exchange Ellipsis, Alchemix&#8217;s alETH-ETH pool, JPEGd’s pETH-ETH pool, and Metronome’s sETH-ETH pool, all of which reported substantial financial losses.</p>



<h2 class="wp-block-heading">The aftermath and response</h2>



<p>In response to the exploit, Vyper, the Python-based smart contract programming language, acknowledged the severity of the situation. They urged all projects relying on the affected versions to reach out immediately. The incident triggered a wave of panic across the DeFi ecosystem, prompting a flurry of transactions across various pools. This led to white hat hackers initiating a rescue operation.</p>



<p>Curve Finance confirmed that the attack did not affect crvUSD contracts and any associated pools. However, the utility token of Curve Finance, CRV, experienced a decline of over 5% in response to the news.</p>



<figure class="wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter"><div class="wp-block-embed__wrapper">
<blockquote class="twitter-tweet" data-width="550" data-dnt="true"><p lang="en" dir="ltr">In addition, crvUSD contracts and any pools with it are also not affected. This is implied in the tweet but still <a href="https://t.co/YSRKBVA7Fd">https://t.co/YSRKBVA7Fd</a></p>&mdash; Curve Finance (@CurveFinance) <a href="https://twitter.com/CurveFinance/status/1685701582883618816?ref_src=twsrc%5Etfw">July 30, 2023</a></blockquote><script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>
</div></figure>



<h2 class="wp-block-heading"> The return of some funds and market reaction</h2>



<p>In a surprising turn of events, the hacker returned a portion of the stolen funds. PeckShield, a blockchain security company, reported that the exploiter had returned 2,879 ETH, worth around $5.4 million, to the protocol deployer address. Despite this, the impact on the DeFi ecosystem was significant, with Curve Finance&#8217;s total value locked (TVL) dropping 43% since the exploit, falling from $3.26 billion to $1.87 billion.</p>



<figure class="wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter"><div class="wp-block-embed__wrapper">
<blockquote class="twitter-tweet" data-width="550" data-dnt="true"><p lang="en" dir="ltr"><a href="https://twitter.com/hashtag/PeckShieldAlert?src=hash&amp;ref_src=twsrc%5Etfw">#PeckShieldAlert</a> c0ffeebabe.eth has returned 2,879 <a href="https://twitter.com/search?q=%24ETH&amp;src=ctag&amp;ref_src=twsrc%5Etfw">$ETH</a> (~$5.4m) to <a href="https://twitter.com/hashtag/Curve?src=hash&amp;ref_src=twsrc%5Etfw">#Curve</a> deployer <a href="https://t.co/33BJLaq12A">https://t.co/33BJLaq12A</a> <a href="https://t.co/2Jq0JOsrhV">pic.twitter.com/2Jq0JOsrhV</a></p>&mdash; PeckShieldAlert (@PeckShieldAlert) <a href="https://twitter.com/PeckShieldAlert/status/1685804409610203136?ref_src=twsrc%5Etfw">July 31, 2023</a></blockquote><script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>
</div></figure><p>The post <a href="https://coinfea.com/curve-finance-suffers-exploit-hacker-returns-part-of-the-loot/">Curve Finance suffers exploit, hacker returns part of the loot</a> first appeared on <a href="https://coinfea.com">Coinfea</a>.</p>]]></content:encoded>
					
		
		
			<media:content url="https://coinfea.com/wp-content/uploads/2021/12/michael-fortsch-gRAS87wSVCs-unsplash-1-1024x683.jpg" medium="image" />
	</item>
	</channel>
</rss>
