Drips Network loses 24,882.99 DAI due to integer conversion vulnerability

iconAiCoin
Share
AI summary iconSummary
Drips Network suffered a loss of 24,882.99 DAI due to a vulnerability alert issued by SlowMist. The issue arose from an integer conversion flaw in the give function of the DaiDripsHub contract, where uint128 amt was improperly converted to int128 without checking the upper limit, allowing attackers to siphon funds. The incident underscores the need for a network upgrade to address this security gap. AiCoin reported the breach and urged developers to prioritize contract audits.

According to a SlowMist security alert, a type conversion vulnerability in the give function of the Drips Network's DaiDripsHub contract resulted in the theft of 24,882.99 DAI. The vulnerability arose because the uint128 amt was converted to int128 without validating the upper limit, allowing an attacker to pass a specific value that reversed the flow of funds, depleting the reserve.

Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information. Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.