• Press Releases
    • Submit a press release
    • Read All
  • Advertise
  • Contact us
Crypto.com Logo Crypto.com Logo
Bitcoinist.com
No Result
View All Result
  • Bitcoin
    • News
    • Price
    • Businesses
    • Acceptance
    • Technology
    • Investment
    • Regulation
    • Reviews
    • Gambling
      • Bitcoin Casinos
      • Real Money Slots
      • Online Casino Real Money
    • All Bitcoin News
  • Altcoins
    • News
    • Price
    • Ethereum
    • Ripple
    • Litecoin
    • EOS
    • NAGA
    • All Altcoin News
  • Tech
    • Blockchain
    • Security
    • FinTech
  • Industry
    • Industry News
    • Press Releases
  • Price
    • Bitcoin Price
    • Ethereum Price
    • Litecoin Price
    • Binance Coin Price
  • How to
    • Buy gift cards/mobile Top Ups with Cryptos
    • What Is Bitcoin?
    • Best Bitcoin Wallet
    • Bitcoin vs Ethereum
    • Why Use Blockchain Technology?
    • Bitcoin Cash ABC vs. Bitcoin Cash SV
    • How to Buy Cryptocurrency
    • Bitcoin Mining
    • Best Bitcoin Brokers
    • Best Bitcoin Forex Brokers
    • How To Earn Bitcoin
    • What is Facebook Libra?
    • Ripple and XRP: The Complete Guide
    • Bitcoin Casinos – Where, What and How to Play
  • Events
  • Play Games
  • Play Casino Games
  • Play Finance
Breaking News: SEC Wants Blood: Coinbase Sued 1 Day After Binance
  • Bitcoin
    • News
    • Price
    • Businesses
    • Acceptance
    • Technology
    • Investment
    • Regulation
    • Reviews
    • Gambling
      • Bitcoin Casinos
      • Real Money Slots
      • Online Casino Real Money
    • All Bitcoin News
  • Altcoins
    • News
    • Price
    • Ethereum
    • Ripple
    • Litecoin
    • EOS
    • NAGA
    • All Altcoin News
  • Tech
    • Blockchain
    • Security
    • FinTech
  • Industry
    • Industry News
    • Press Releases
  • Price
    • Bitcoin Price
    • Ethereum Price
    • Litecoin Price
    • Binance Coin Price
  • How to
    • Buy gift cards/mobile Top Ups with Cryptos
    • What Is Bitcoin?
    • Best Bitcoin Wallet
    • Bitcoin vs Ethereum
    • Why Use Blockchain Technology?
    • Bitcoin Cash ABC vs. Bitcoin Cash SV
    • How to Buy Cryptocurrency
    • Bitcoin Mining
    • Best Bitcoin Brokers
    • Best Bitcoin Forex Brokers
    • How To Earn Bitcoin
    • What is Facebook Libra?
    • Ripple and XRP: The Complete Guide
    • Bitcoin Casinos – Where, What and How to Play
  • Events
  • Play Games
  • Play Casino Games
  • Play Finance
Bitcoinist.com
No Result
View All Result
Breaking News: SEC Wants Blood: Coinbase Sued 1 Day After Binance
avatar-square

HashEx Identifies Critical Vulnerability In Code of SafeMoon DeFi Project

Steven Hay by Steven Hay
2 years ago
in Industry
0

A slew of critical vulnerabilities has recently been identified by the developers at DeFi security provider HashEx when examining the code of the SafeMoon DeFi project. The identified issues are so severe that users are being warned to stay away from the protocol for fear of losing their funds.

As reported in a press release shared by HashEx with Bitcoinist, the vulnerabilities were detected in SafeMoon – a BEP-20 smart contract based DeFi protocol that charges up to 5% in commissions per on-chain transfer for later redistribution among $SAFEMOON token holders. The $SAFEMOON token itself has grown in price by more than 15,000% since launch, surpassing the $6 billion market cap with DEX-swaps liquidity currently standing higher than $200,000,000.

Despite the stellar figures, HashEx has identified that the issues placing the funds of over two million investors in jeopardy include 12 vulnerabilities, of which two are considered to be critical, and three are deemed to be extremely high risk.

The identified vulnerabilities allow any perpetrator to set commissions for $SAFEMOON tokens as high as 100%, conduct malignant rug-pulling practices, exclude token holders from commission distributions, temporarily block token transfer, or render smart contracts permanently inoperable. Moreover, at least four of the vulnerabilities can be launched in combination, thus multiplying the inflicted damage in favor of the malevolent actors.

The communication HashEx has had with the SafeMoon development team has made it clear that the latter are aware of the vulnerabilities, but cannot update these issues “with a deployed contract without a hardfork”.

“Functions like excludeFromReward and the same for excludeFromFee are used for exchange hot wallets so that users are not unfairly penalized for participating with CEXs. Addressing these other issues, such as ownership renounce being able to be taken back by the contract deployer, we are never going to renounce and have made our stance on that clear in the past. Internally we have policies and procedures around how the contract operates to alleviate risk of mishandling values, however you will never see us modify fees or maxTx,” was the statement received from SafeMoon CTO Thomas Smith on the findings reported by HashEx.

Vulnerabilities, such as rug-pulling, would allow for liquidity to be “pulled” from SafeMoon’s pools, as its externally owned smart contract account is controlled by a real person, and can be compromised by hackers. Such an attack could lead to an instant loss of over 15% of all SafeMoon liquidity, amounting to over $20 million. In addition, a function call with temporary ownership renounce can be applied even if the developer transfers the ownership to a token burning address 

The blacklisting of rewards that would allow for exclusion of certain wallets from rewards distribution is just as worrying, as it can be used to distribute as much as 30% of the balance in favor of wallets that can be included in the list at the attacker’s will. Even more worrying is the possibility of 100% token transfers tax-free, which would mean that instead of transferring the tokens to the receiver, the whole sum would end up in a common reward pool.

The combination of such critical vulnerabilities in SafeMoon is a sobering reminder of the risks that DeFi projects still bear on the market. Messari recently reported that a total of $285 million has been stolen as a result of DeFi hacks over the past two years. A recent example is the case of the DeFi100 decentralized finance protocol that is being reported to have turned out to be a scam that ended with the theft of $32 million in user funds. Whether SafeMoon is on the same slippery path is a question that only the project’s developers or time will answer. 

 

ShareTweetShareShare

Sign Up for Our Newsletter!

For updates and exclusive offers enter your email.

I consent to my submitted data being collected and stored.

Steven Hay

Steven Hay

Related Posts

It’s Not Luck; AI Networking Helps People Find Their Perfect Business Match – Andrew Shpanch, Founder & CEO of CryptoMatch

It’s Not Luck; AI Networking Helps People Find Their Perfect Business Match – Andrew Shpanch, Founder & CEO of CryptoMatch

8 hours ago
Phemex, The Web3 Trade Portal

Phemex, The Web3 Trade Portal

20 hours ago
Crypto Funding Protocol AngelBlock Offers Startups Up To 15K In Grants

Crypto Funding Protocol AngelBlock Offers Startups Up To 15K In Grants

1 day ago
Traders Should Forget Dogecoin Price Predictions and Back These 3 Meme Coins – Here’s Why

Traders Should Forget Dogecoin Price Predictions and Back These 3 Meme Coins – Here’s Why

1 day ago
Ripple Price Prediction as XRP Network Activity Spikes 2,600% – Are Low-cap Cryptos the Best Bet?

Ripple Price Prediction as XRP Network Activity Spikes 2,600% – Are Low-cap Cryptos the Best Bet?

1 day ago
Introducing Gem Wallet: Your Open-Source DeFi Wallet

Introducing Gem Wallet: Your Open-Source DeFi Wallet

3 days ago
Please login to join discussion

Premium Partners

Premium Casino Partners

Play Finance

Now Trending

  • Whale Power Unleashed: Mooky Emerges as the Rival Meme Coin...

    5 days ago
  • Exploring the Meteoric Rise of Mooky: Could It Be the Next...

    5 days ago
  • Discover the Next Big Thing: Mooky.io Presale Boasting Fair...

    5 days ago

Top Casinos

Trust Dice
Trust Dice
Punt Casino
Punt Casino
mBit
mBit
1xBit
1xBit
K8
K8

Press Releases

  • Double The Value of Your Crypto Portfolio This Summer...

    45 mins ago
  • AiDoge Presale Hits $12 Million, but Could Chancer Be the...

    2 hours ago
  • How Avorak AI and Ethereum Are Gaining a Foothold in Asian...

    3 hours ago
  • Look For Opportunities With Uwerx(WERX) Presale And...

    3 hours ago
  • PancakeSwap (CAKE) Gains, Sparklo (SPRK) To Enter Top 100...

    4 hours ago

Bitcoin news portal providing breaking news, guides, price analysis about decentralized digital money & blockchain technology.

Bitcoin

  • News
  • Price
  • Businesses
  • Acceptance
  • Technology
  • Investment
  • Regulation
  • Reviews

Altcoins

  • News
  • Price
  • Ethereum
  • Ripple
  • Litecoin
  • EOS
  • NAGA

Categories

  • Blockchain
  • Security
  • FinTech
  • Technology
  • Trending
  • Breaking News
  • Press Releases
  • How to

Pages

  • Contact us
  • Editorial Policy
  • Advertise
© 2023 Bitcoinist.com. All Rights Reserved.
  • Bitcoin
    • News
    • Price
    • Businesses
    • Acceptance
    • Technology
    • Investment
    • Regulation
    • Reviews
    • Gambling
      • Bitcoin Casinos
      • Real Money Slots
      • Online Casino Real Money
    • All Bitcoin News
  • Altcoins
    • News
    • Price
    • Ethereum
    • Ripple
    • Litecoin
    • EOS
    • NAGA
    • All Altcoin News
  • Tech
    • Blockchain
    • Security
    • FinTech
  • Industry
    • Industry News
    • Press Releases
  • Price
    • Bitcoin Price
    • Ethereum Price
    • Litecoin Price
    • Binance Coin Price
  • How to
    • Buy gift cards/mobile Top Ups with Cryptos
    • What Is Bitcoin?
    • Best Bitcoin Wallet
    • Bitcoin vs Ethereum
    • Why Use Blockchain Technology?
    • Bitcoin Cash ABC vs. Bitcoin Cash SV
    • How to Buy Cryptocurrency
    • Bitcoin Mining
    • Best Bitcoin Brokers
    • Best Bitcoin Forex Brokers
    • How To Earn Bitcoin
    • What is Facebook Libra?
    • Ripple and XRP: The Complete Guide
    • Bitcoin Casinos – Where, What and How to Play
  • Events
  • Play Games
  • Play Casino Games
  • Play Finance

© 2023 Bitcoinist. All Rights Reserved.

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy Center or Cookie Policy.