Beosin: DeltaPrime Project Suspected Private Key Leak, Multiple Key Contracts Maliciously Upgraded, $5.9 Million Loss
DeltaPrime Project Suffers $5.9 Million Loss in Apparent Private Key Leak and Contract Upgrade
On September 16th, PANews reported that blockchain security audit company Beosin Alert detected a potential private key leak within the DeltaPrime project, leading to the malicious upgrading of several key contracts and the theft of approximately $5.9 million in assets.
Beosin's security team analysis revealed that the core of this incident stemmed from the modification of multiple interest calculation contracts in the project's lending pools. These contracts were replaced with malicious attack contracts, granting the attacker the ability to withdraw assets from the pools.
The attacker continued the attack, immediately withdrawing funds whenever users deposited assets into the pools. The total loss currently sits at approximately $5.9 million, with all stolen tokens exchanged for ETH and stored at the address 0xd550cfeA0BFFDC81B2dEe7B6d915D9D9e31d83A2.