ARTICLE AD
Fraudsters hacked the Blueberry DeFi protocol and advised users to withdraw money.
The Blueberry project team shared in their post X on Feb. 23 that they had to stop work due to the exploit.
ATTENTION: There is an ongoing exploit on Blueberry.
It appears it has been front run accoriding to Peckshield. More details will follow shortly.
The front end is also down, so if you are able to interact directly with the contracts to withdraw, please do.
We are pausing the…
Details of the exploit are being determined. The developers advised users to withdraw funds from the platform. However, users have reported withdrawal problems through Blueberry, noting that the front-end interface needs to be fixed.
“We are pausing the protocol as quickly as possible.”
Blueberry teamThe Blueberry Protocol is a decentralized lending marketplace that allows leveraged lending and borrowing up to 20x the value of the collateral.
Blueberry later added another update stating that all leaked funds had been transferred to c0ffeebabe.eth and were safe in Blueberry’s multi-sig except for validator payments. A total of 457 Ethereum (ETH) (around $1.35 million) was initially drained, but 366 ETH was rescued by the so-called “white hat” and returned to the multi-sig wallet.
To quickly reiterate:
Deposited funds are currently safe. Only three markets were affected and the large majority was already returned.
Total validator payment (loss) is 91 ETH. We are getting in touch and aim for a full repayment to users as the goal. Protocol is paused. https://t.co/uaQKwS9Iik
“Deposited funds are currently safe. Only three markets were affected, and the large majority was already returned.”
Blueberry teamEarlier in February, fraudsters hacked the PlayDapp blockchain gaming platform based on Ethereum. During the attack, the attackers mined 200 million PLA coins. According to analysts, the reason was the compromise of private keys associated with PlayDapp. They noted that the hackers added a new address, resulting in 200 million PLA, or $31 million.
However, the losses were then updated, and the platform lost over $290 million, marking the largest hack since 2022. PlayDapp has paused the PLA smart contract and proposed a migration plan to shift to a new PDA token for the network.