Shield Protocol: KiloEx Suffers Attack Due to Price Oracle Vulnerability, Losing Approximately $7.5 Million

Blockbeats04-14

BlockBeats News, April 15th, according to PeckShield monitoring, perpetual contract DEX KiloEx was attacked today, with a loss of about $7.5 million (of which $3.3 million on the Base network, $3.1 million on the opBNB network, and $1 million on the BNB Chain).

KiloEx is currently emergency paused. PeckShield's preliminary analysis of one of the attack transactions shows that this was an oracle price manipulation issue. The attacker exploited this vulnerability by setting the initial ETHUSD price to 100 at the opening and then immediately closing at an inflated ETHUSD price of 10,000. In this single transaction alone, the attacker profited about $3.12 million.

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Comments

We need your insight to fill this gap

Leave a comment

{"i18n":{"language":"en_US"},"isChannel":false,"data":{"share":"https://ttm.financial/m/news/2527122977?lang=en_US&edition=full_marsco","thumbnail":"","is_english":true,"pubTime":"2025-04-15 07:10","share_image_url":"https://static.laohu8.com/e9f99090a1c2ed51c021029395664489","id":"2527122977","market":"us","top_or_hot":-1,"title":"Shield Protocol: KiloEx Suffers Attack Due to Price Oracle Vulnerability, Losing Approximately $7.5 Million","media":"Blockbeats","content":"<html><body><div><p>BlockBeats News, April 15th, according to PeckShield monitoring, perpetual contract DEX KiloEx was attacked today, with a loss of about $7.5 million (of which $3.3 million on the Base network, $3.1 million on the opBNB network, and $1 million on the BNB Chain).</p><p>KiloEx is currently emergency paused. PeckShield's preliminary analysis of one of the attack transactions shows that this was an oracle price manipulation issue. The attacker exploited this vulnerability by setting the initial ETHUSD price to 100 at the opening and then immediately closing at an inflated ETHUSD price of 10,000. In this single transaction alone, the attacker profited about $3.12 million.</p></div></body></html>","source":"theblockbeats_live","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>Shield Protocol: KiloEx Suffers Attack Due to Price Oracle Vulnerability, Losing Approximately $7.5 Million</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\nShield Protocol: KiloEx Suffers Attack Due to Price Oracle Vulnerability, Losing Approximately $7.5 Million\n</h2>\n\n<h4 class=\"meta\">\n\n\n2025-04-15 07:10 GMT+8&nbsp;&nbsp;&nbsp;<a href=https://www.theblockbeats.info//en/flash/289710><strong>Blockbeats</strong></a>\n\n\n</h4>\n\n</header>\n<article>\n<div>\n<p>BlockBeats News, April 15th, according to PeckShield monitoring, perpetual contract DEX KiloEx was attacked today, with a loss of about $7.5 million (of which $3.3 million on the Base network, $3.1 ...</p>\n\n<a href=\"https://www.theblockbeats.info//en/flash/289710\">Source Link</a>\n\n</div>\n\n\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"USD","symbol_name":"ProShares Ultra Semiconductors","start_time":0,"source_url":"https://www.theblockbeats.info//en/flash/289710","article_id":"2527122977","we_media_id":null,"thumbnails":[],"rights":null,"url":"https://stock-news.laohu8.com/highlight/detail?id=2527122977","pubTimestamp":1744672200,"columns":[],"sourceInfo":{"source_id":"theblockbeats_live","name":"Blockbeats快讯"},"weMediaInfo":null,"summary":"BlockBeats News, April 15th, according to PeckShield monitoring, perpetual contract DEX KiloEx was attacked today, with a loss of about $7.5 million .KiloEx is currently emergency paused. PeckShield's preliminary analysis of one of the attack transactions shows that this was an oracle price manipulation issue. The attacker exploited this vulnerability by setting the initial ETHUSD price to 100 at the opening and then immediately closing at an inflated ETHUSD price of 10,000. In this single transaction alone, the attacker profited about $3.12 million.","collect":0,"end_time":0,"defaultTopTitle":"theblockbeats.info","property":[],"viewcount":null,"language":"en","relate_stocks":{"USD":"ProShares Ultra Semiconductors","ETH":"迷你以太坊ETF-Grayscale"},"translate_title":"Shield协议：KiloEx因Price Oracle漏洞遭受攻击损失约750万美元","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"ETH":1,"USD":1},"content_text":"BlockBeats News, April 15th, according to PeckShield monitoring, perpetual contract DEX KiloEx was attacked today, with a loss of about $7.5 million (of which $3.3 million on the Base network, $3.1 million on the opBNB network, and $1 million on the BNB Chain).KiloEx is currently emergency paused. PeckShield's preliminary analysis of one of the attack transactions shows that this was an oracle price manipulation issue. The attacker exploited this vulnerability by setting the initial ETHUSD price to 100 at the opening and then immediately closing at an inflated ETHUSD price of 10,000. In this single transaction alone, the attacker profited about $3.12 million.","kind":"highlight","is_publish_news":true,"is_publish_highlight":false,"is_publish_live":false,"is_publish_wemedia":null,"editions":null,"column":"","sentiment":"-2","news_tag":"","news_rank":0,"symbols":[],"gpt_button":1,"code":"91000000","status":"200"},"commentList":[],"isCommentEnd":true,"newsSizeData":{"likeSize":0,"commentSize":0,"repostSize":0,"favoriteSize":0,"likeStatus":false,"favoriteStatus":false},"APP":{"userAgent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)","isDev":false,"isTTM":true,"deviceId":"web-server-community-laohu8-v3","version":"4.33.2","shortVersion":"4.33.2","platform":"web","vendor":"web","appName":"ttm","isIOS":false,"isAndroid":false,"isTiger":false,"isTHS":false,"isWeiXin":false,"isWeiXinMini":false,"isWeiBo":false,"isQQ":false,"isBaiduSwan":false,"isBaiduBox":false,"isDingTalk":false,"isToutiao":false,"isOnePlus":false,"isHuaWei":false,"isXiaomi":false,"isXiaomiWebView":false,"isOppo":false,"isVivo":false,"isSamsung":false,"isMobile":false},"href":"/m/news/2527122977"}