Decentralized finance (DeFi) platforms, Curve, Metronome, and Alchemix, have come together to launch an initiative aimed at recovering stolen funds from recent exploits on Curve’s pools. The protocols have offered a 10% bounty of the stolen funds as a reward, urging the perpetrators to step forward and return the remaining 90%. The exploit, which occurred on July 30, resulted in the theft of approximately $70 million worth of cryptocurrencies, making the bounty potentially close to $7 million.
To encourage the responsible parties to cooperate, the protocols have guaranteed that no further legal actions or involvement of law enforcement will be pursued. In a joint statement, they stated, “We want to resolve this in a civilized manner.” They further added that if the responsible parties choose not to voluntarily return the funds and the process is not completed by August 6 at 0800 UTC, the bounty will be expanded to the public. Additionally, the protocols will offer the full 10% reward to anyone who can provide information leading to the identification and conviction of the perpetrators.
The trio has established a direct channel of communication via curvenegotiation@protonmail.com, urging the responsible parties to respond promptly. They also emphasized that individuals seeking negotiation must verify their ownership of the email address through on-chain verification.
The attack on Curve Finance pools was a result of a critical vulnerability in certain versions of the Vyper programming language. The exploit targeted liquidity pools using Vyper 0.2.15, 0.2.16, and 0.3.0, taking advantage of a malfunctioning reentrancy lock. This vulnerability affected four liquidity pools on Curve Finance.
This security incident has sparked uncertainty within the crypto community, raising concerns about a potential domino effect on the DeFi ecosystem. As a consequence of the exploit, Curve Finance’s native stablecoin, crvUSD, briefly depegged on August 3, reflecting the ambiguity surrounding the protocol.
The collaboration between Curve, Metronome, and Alchemix to recover the stolen funds demonstrates the industry’s efforts to combat attacks and maintain trust in the DeFi space. By offering a substantial bounty and providing a fair process, they aim to resolve the situation peacefully. However, if the perpetrators fail to cooperate, the protocols have made it clear that they will pursue legal action to ensure justice is served.
This incident serves as a reminder of the importance of robust security measures and constant vigilance within the DeFi community. As the industry continues to grow and attract significant amounts of capital, it becomes crucial for projects to prioritize security to protect users and maintain the credibility of the ecosystem.
Source link