A smart contract owned by Visor Finance was identified as vulnerable to an address verification exploitation. An attack on December 21, 2021, caused financial losses amounting to $8.2 million. The contract's deposit function failed to correctly verify the sender's address, allowing a malicious actor to exploit the system. By verifying only the owner of a contract without sufficient checks, the system is susceptible to transaction initiations by unauthorized parties. This serves as a critical example of the risks in smart contract design and the need for better security measures.
A smart contract owned by Visor Finance exhibited a vulnerability that led to an attack resulting in $8.2 million losses, highlighting critical weaknesses in address verification methods.
The vulnerable deposit function inadequately checks if the 'from' address is a contract owner, enabling exploitations by attackers who control the transaction initiation.
Collection
[
|
...
]