The addresses linked to the hack attack have managed to steal 206,809 Binance Coin from Qubit’s QBridge protocol.
Hacks involving high-profile figures have becoming more common in the cryptocurrency sector, and Qubit Finance is the most recent decentralized finance (DeFi) system to be targeted by criminals.
Hackers gained access to Qubit Finance, which is based on Binance Smart Chain, and stole over $80 million, according to a tweet from the protocol on Friday. Qubit’s QBridge protocol was robbed of 206,809 Binance Coin (BNB) by the addresses associated to the attack. At the time of writing, the assets were valued at more than $80 million.
QBridge was hacked to create “a huge amount of xETH collateral” that was subsequently used to drain the entire quantity of BNB stored on Q Bridge, according to PeckShield, which analyzed Qubit’s smart contracts.
In a report by security firm CertiK, the attacker utilized a deposit option in the QBridge contract to illegally mint 77,162 qXETH, which is an asset representing ether bridged via Qubit. The protocol was duped into believing that attackers had deposited money when they hadn’t.
According to CertiK, the hacker carried out these actions multiple times and converted all of the assets to Binance Coin as a result. This makes the exploit the seventh-largest in DeFi, according to DeFiYield Rekt data.
The Qubit team sent out a statement to notify clients that they are still monitoring the hacker and their impacted assets. The blog also notes that we have contacted the attacker to offer the maximum reward as determined by their program. The team has since disabled Supply, Redeem, Borrow, Repay, Bridge and Bridge Redemption features until further notice. However, they indicated that claiming is available.
Hacks, rug-pulls, and protocol exploits are all common in the cryptocurrency sector. Earlier this month, decentralized finance security platform and bug bounty service Immunefi revealed that cybercrime losses surpassed $10.2 billion in 2021. On Jan. 17, the popular crypto exchange Crypto.com suffered nearly $34 million in losses following a security breach.