Express
Solana Library Bug Could Have Seen Attackers Stealing $27 Million an Hour
Summary: A bug in the Solana Protocol Library (SPL) could have seen attackers steal money from multiple Solana projects at a rate of $27 million an hour, according to security researchers at Neodyme. The projects that were affected included yield aggregator Tulip Protocol and lending protocols Solend and Larix. These projects currently look after $1.7 billion ...
A bug in the Solana Protocol Library (SPL) could have seen attackers steal money from multiple Solana projects at a rate of $27 million an hour, according to security researchers at Neodyme. The projects that were affected included yield aggregator Tulip Protocol and lending protocols Solend and Larix. These projects currently look after $1.7 billion in funds.
In a blog post, Neodyme explained that the bug was first publicly disclosed by one of Neodyme’s auditors, known as Simon, on file sharing platform GitHub in June. At the time, the security researchers did not know if it was exploitable or how big its impact could be. The bug went unnoticed.The researchers swiftly contacted multiple Solana projects that they believed were affected by this bug.
By Amy Liu
Tags: Attackers,Bug,Solana
Link: Solana Library Bug Could Have Seen Attackers Stealing $27 Million an Hour [Copy]