Trending News: Coinbase: The market is in a low-priced buying mode, with three leverages moving aroundVariant Partner: Four crypto startup directions that I’m excited aboutInterpretation of Pendle and Boros: Converting capital rates into DeFi derivativesArthur Hayes talks about why HYPE sells: HYPE’s Damocles SwordIs the US dollar crash really a good thing for Bitcoin?The structure of the next cryptocurrency cycleArthur Hayes: Has entered the middle of the cycle, DAT or FTX-like crashesWhy is stablecoins the best track for blockchain implementation?Opportunity to reverse PERP DEX from CEX: That’s the moment.DEX War: Hyperliquid rival Aster’s counterattackMichael Saylor: BTC may appreciate at a rate of 29% in the next two decadesThe United States restarts interest rate cuts: meltdown continues. How to make arrangements?Perp Dex led by Hyperliquid introduces new form: neutral exchangesVitalik: Low-risk DeFi is already supporting the Ethereum economyDogecoin’s ETF Road Hidden on Wall Street’s “Meme Introduction”Fed rate cuts: The enlightenment of Bitcoin and enjoying future market conditions?Analysis of the main line of the crypto market: the 2025 battle between stablecoins, AI and MemeInsights4.vc: 2025 TradFi Blockchain Application GuideBase issue coins: a long-planned encryption “open plot”Standing at the intersection of digital finance: China Merchants Bank International’s RWA path selection$11.3 billion ETH is exiting stake. How does Vitalik view this trend?Sister Mutou and UAE invest in Nasdaq listed company and transform into SOL FinanceBitcoin inventory on the exchange bottoms out, indicating that a super bull market is coming?One of the analysis of coin-stock linkage strategy: concept, background and core logicThe Fed should learn lessons from Bitcoin’s monetary policyDogecoin’s Wall Street Carnival: Is ETF the future of finance or the starting point of bubbles?Cryptocurrency ETFs usher in watershed: The first Dogecoin ETF in the United States is approved for listingFed cuts interest rates by 25BP, risk-managed interest rate cuts in the futureThe next decade of EthereumCan the White House protect DeFi?Why did the copycat season break out on Binance Alpha?Nasdaq applies for tokenized stock trading: Blockchain enters the core of Wall Street?Records of the Fed’s interest rate meeting in September 2025From APP integration to native token issuance: A quick look at the Base Ecosystem Core ProjectThe Fed restarts interest rate cuts after a year. Can the crypto bull market hit a new high?New York regulator urges banks to use blockchain to deal with crypto risksFigure became the first RWA stock in the US stock market. Why?US Congress promotes strategic Bitcoin reserves, requiring purchase of 1 million coins within 5 yearsUS SEC: Spot crypto ETFs can be listed using general listing standardsSolana+WLFI Bonk is time to reverse for the third timeThe golden age driven by computing power is coming. What is the moat of crypto mining companies?How Plasma becomes Chrome for stablecoin infrastructureAI Agent has the ability to “spend money”Tom Lee: Institutions reshape crypto cycles, stablecoins and AI narrative push up ETHDecentralized artificial intelligence training: architecture, opportunities and challengesHourglass Market: Cryptocurrency, Cross-border and Other AreasBTC is waiting for further riseWhy is it a good time for Buy Dip in technical projects?From Twitch to Pump.fun: The Next Evolution of LiveHow are the highly sought-after gold RWA products released?Prepare for the upcoming BTCfi tsunamiWeb3 Live Track: If PumpFun is Taobao Sidekick is DouyinElizabeth Stark: Why Bitcoin needs a lawyerSEC sends positive signals to DeFi regulation. What is the significance of the encryption industry?What are the highlights of the Ethereum Foundation’s establishment of a dAI team?Wall Street Bank Models Ethereum for the First Time: Predicted Price of $4,300 at the End of YearBoros: On-chain derivatives market for perpetual contract funding ratesWall Street bets on Solana: A comprehensive layout from ARK to corporate treasuryEthereum is expected to replace Wall Street infrastructure, but is still underestimatedWill the U.S. ultimate conspiracy tokenize U.S. debt?CoinShares: Permanent inflation won’t save your blockchainBitwise: Encrypted ETF event is comingQuick View of TCG Card Tokenization Tide and Related Trading PlatformsMilan confirms to be the Fed’s chairman, will catch up with Tuesday’s interest rate resolution meetingThe wind from DAT finally blows to SolanaOn-chain signal: Why Bitcoin may grow explosively in the next 12 monthsAsset prices will rise sharply after the Fed cuts interest ratesUS economy: Stagflation is a foregone conclusionPantera: Why is it optimistic about Solana and leads investment in SOL DAT company HeliusFed interest rate meeting is approaching, why is it more likely to cut 25bp cautiouslyCoinbase: Fed will cut interest rates by 25 basis points, DAT premium is disappearingWhy does the next phase of DeFi growth depend on “infrastructure”?The global competition between USAT, RLUSD and regulated digital dollarsBurying a friendly army is not strange, used to itTether launches USAT to compete with Circle?Besides stablecoins, what will drive the value of RWA assets to $30 trillion?Altcoin DAT Investment GuideThe gate of freedom in the decentralized world is hard to come out of your sonDefiLlama Founder: False metrics in RWAUSDH bidding event: Will it change the game rules of the subsequent stablecoin market?Fidelity: Bitcoin is no longer a high-risk asset and is “de-risk”Tether is so profitable, why does it still promote compliant stablecoins in the United States?How to define the goals of Bitcoin Treasury companiesAccelerated economic collapsePantera Partner: Why are we more optimistic about RWA than everWho owns the most Bitcoins (2025)Can tokenized stocks truly achieve decentralization?The era of all-weather trading is coming?BlackRock explores “tokenization” of ETFsHyperliquid’s stablecoin USDH: Battle for ControlRWA: On-chain IPO and Recombination of Real-world AssetsViewpoint: Layer2 cannot support ecological prosperity by relying solely on Ethereum security inheritanceCrypto Asset Vault RevolutionCoinbase: “September” effect is not fidelity, crypto market will strengthen in early Q4WLFI: From the White House to the Chain The Four-Level Narrative of Rise in a YearQuestions arise, the “estimated proportion” of the US CPI rose to 36%Two-way journey between crypto market and traditional capital marketThe currency circle has attracted money again: Figure US stocks rose 24% in its first show, with a market value of over $6 billion77 stablecoin license application: How to choose from Hong Kong?Grayscale: Macro reasons for favorable encryptionMulticoin Lianchuang: Why SOL is the best asset for DAT
Mon. Sep 22nd, 2025
Trending News: Coinbase: The market is in a low-priced buying mode, with three leverages moving aroundVariant Partner: Four crypto startup directions that I’m excited aboutInterpretation of Pendle and Boros: Converting capital rates into DeFi derivativesArthur Hayes talks about why HYPE sells: HYPE’s Damocles SwordIs the US dollar crash really a good thing for Bitcoin?The structure of the next cryptocurrency cycleArthur Hayes: Has entered the middle of the cycle, DAT or FTX-like crashesWhy is stablecoins the best track for blockchain implementation?Opportunity to reverse PERP DEX from CEX: That’s the moment.DEX War: Hyperliquid rival Aster’s counterattackMichael Saylor: BTC may appreciate at a rate of 29% in the next two decadesThe United States restarts interest rate cuts: meltdown continues. How to make arrangements?Perp Dex led by Hyperliquid introduces new form: neutral exchangesVitalik: Low-risk DeFi is already supporting the Ethereum economyDogecoin’s ETF Road Hidden on Wall Street’s “Meme Introduction”Fed rate cuts: The enlightenment of Bitcoin and enjoying future market conditions?Analysis of the main line of the crypto market: the 2025 battle between stablecoins, AI and MemeInsights4.vc: 2025 TradFi Blockchain Application GuideBase issue coins: a long-planned encryption “open plot”Standing at the intersection of digital finance: China Merchants Bank International’s RWA path selection$11.3 billion ETH is exiting stake. How does Vitalik view this trend?Sister Mutou and UAE invest in Nasdaq listed company and transform into SOL FinanceBitcoin inventory on the exchange bottoms out, indicating that a super bull market is coming?One of the analysis of coin-stock linkage strategy: concept, background and core logicThe Fed should learn lessons from Bitcoin’s monetary policyDogecoin’s Wall Street Carnival: Is ETF the future of finance or the starting point of bubbles?Cryptocurrency ETFs usher in watershed: The first Dogecoin ETF in the United States is approved for listingFed cuts interest rates by 25BP, risk-managed interest rate cuts in the futureThe next decade of EthereumCan the White House protect DeFi?Why did the copycat season break out on Binance Alpha?Nasdaq applies for tokenized stock trading: Blockchain enters the core of Wall Street?Records of the Fed’s interest rate meeting in September 2025From APP integration to native token issuance: A quick look at the Base Ecosystem Core ProjectThe Fed restarts interest rate cuts after a year. Can the crypto bull market hit a new high?New York regulator urges banks to use blockchain to deal with crypto risksFigure became the first RWA stock in the US stock market. Why?US Congress promotes strategic Bitcoin reserves, requiring purchase of 1 million coins within 5 yearsUS SEC: Spot crypto ETFs can be listed using general listing standardsSolana+WLFI Bonk is time to reverse for the third timeThe golden age driven by computing power is coming. What is the moat of crypto mining companies?How Plasma becomes Chrome for stablecoin infrastructureAI Agent has the ability to “spend money”Tom Lee: Institutions reshape crypto cycles, stablecoins and AI narrative push up ETHDecentralized artificial intelligence training: architecture, opportunities and challengesHourglass Market: Cryptocurrency, Cross-border and Other AreasBTC is waiting for further riseWhy is it a good time for Buy Dip in technical projects?From Twitch to Pump.fun: The Next Evolution of LiveHow are the highly sought-after gold RWA products released?Prepare for the upcoming BTCfi tsunamiWeb3 Live Track: If PumpFun is Taobao Sidekick is DouyinElizabeth Stark: Why Bitcoin needs a lawyerSEC sends positive signals to DeFi regulation. What is the significance of the encryption industry?What are the highlights of the Ethereum Foundation’s establishment of a dAI team?Wall Street Bank Models Ethereum for the First Time: Predicted Price of $4,300 at the End of YearBoros: On-chain derivatives market for perpetual contract funding ratesWall Street bets on Solana: A comprehensive layout from ARK to corporate treasuryEthereum is expected to replace Wall Street infrastructure, but is still underestimatedWill the U.S. ultimate conspiracy tokenize U.S. debt?CoinShares: Permanent inflation won’t save your blockchainBitwise: Encrypted ETF event is comingQuick View of TCG Card Tokenization Tide and Related Trading PlatformsMilan confirms to be the Fed’s chairman, will catch up with Tuesday’s interest rate resolution meetingThe wind from DAT finally blows to SolanaOn-chain signal: Why Bitcoin may grow explosively in the next 12 monthsAsset prices will rise sharply after the Fed cuts interest ratesUS economy: Stagflation is a foregone conclusionPantera: Why is it optimistic about Solana and leads investment in SOL DAT company HeliusFed interest rate meeting is approaching, why is it more likely to cut 25bp cautiouslyCoinbase: Fed will cut interest rates by 25 basis points, DAT premium is disappearingWhy does the next phase of DeFi growth depend on “infrastructure”?The global competition between USAT, RLUSD and regulated digital dollarsBurying a friendly army is not strange, used to itTether launches USAT to compete with Circle?Besides stablecoins, what will drive the value of RWA assets to $30 trillion?Altcoin DAT Investment GuideThe gate of freedom in the decentralized world is hard to come out of your sonDefiLlama Founder: False metrics in RWAUSDH bidding event: Will it change the game rules of the subsequent stablecoin market?Fidelity: Bitcoin is no longer a high-risk asset and is “de-risk”Tether is so profitable, why does it still promote compliant stablecoins in the United States?How to define the goals of Bitcoin Treasury companiesAccelerated economic collapsePantera Partner: Why are we more optimistic about RWA than everWho owns the most Bitcoins (2025)Can tokenized stocks truly achieve decentralization?The era of all-weather trading is coming?BlackRock explores “tokenization” of ETFsHyperliquid’s stablecoin USDH: Battle for ControlRWA: On-chain IPO and Recombination of Real-world AssetsViewpoint: Layer2 cannot support ecological prosperity by relying solely on Ethereum security inheritanceCrypto Asset Vault RevolutionCoinbase: “September” effect is not fidelity, crypto market will strengthen in early Q4WLFI: From the White House to the Chain The Four-Level Narrative of Rise in a YearQuestions arise, the “estimated proportion” of the US CPI rose to 36%Two-way journey between crypto market and traditional capital marketThe currency circle has attracted money again: Figure US stocks rose 24% in its first show, with a market value of over $6 billion77 stablecoin license application: How to choose from Hong Kong?Grayscale: Macro reasons for favorable encryptionMulticoin Lianchuang: Why SOL is the best asset for DAT
Mon. Sep 22nd, 2025

Blueberryprotocol attack analysis

Source: Shenzhen Zero -time Technology

background

On February 25, 2024, we monitored a attack event on Ethereum: https://etherscan.io/tx/0xf0464 Lueberryprotocol, the loss of about 455 ETH 1.4m USD.Fortunately, the attack was intercepted by an ID of a C0FFEEBABE white hat (0XC0FFEEBABABABE5D496B2DDE509F9FA189C25CF29671 [C0Ffeebabe.eth]), and finally returned 366.5 ETH 1.2 M USD.

Blueberryprotocol is a COMPOUND FORK -based DEFI project, providing borrowing, mortgage and other services.The specific operation mode is shown below:

Attack analysis

The attacker first borrowed 1 WETH through lightning loan from Balancer.

Subsequently, the attacker mortgaged 1 Weth to Blueberryprotocol and Mint made 1 BWETH.Then, the attacker used 1 BWETH mortgaged as a mortgage, and used Borrow to borrow 8616 OHM (Decimal = 9), 913262 USDC (decimal = 6), and 6.86 WBTC (decimal = 8).

Finally, the attacker replaced the OHM, USDC, and WBTC to 457 ETH through Uniswap.

Vulnerability analysis

The root cause of the problem is that when the code processs different assets, the tail number is processed errors.The decimal of Weth is 18, OHM’s decimal is 9, USDC’s decimal is 6, and the decimal of WBTC is 8.

However, the Price Oracle of Blueberryprotocol, when processing the price of token, is scal at the price of Decimal = 18.

As a result, the value of OHM shrinks by 1e9, USDC value shrinks by 1e12, and WBTC value shrinks by 1E10.As a result, the attacker picked up assets worth 460 ETH through only 1 ETH mortgage.

Summarize

The vulnerability is that the project party uses the same code to handle different tokens, and does not take into account the different Decimal of different token.Asset caused a large amount of assets of Decimal, and the attacker was borrowed at a very low price as a mortgage.It is recommended that the project party conducts full audit and cross -audit for smart contracts before the contract is launched to avoid such security issues.

    • jakiro

    Related Posts

    Interpretation of Pendle and Boros: Converting capital rates into DeFi derivatives
    Interpretation of Pendle and Boros: Converting capital rates into DeFi derivatives

    Author: Ryan Yoon, Source: Tiger Research, Compiled by: Shaw Bitchain Vision This article analyzes how Pendle converts volatile financing expenses into stable, predictable returns for institutional investors through Boros, thereby…

    Continue reading
    Arthur Hayes talks about why HYPE sells: HYPE’s Damocles Sword
    Arthur Hayes talks about why HYPE sells: HYPE’s Damocles Sword

    Note: BitMEX founder Arthur Hayes sold 96,628 HYPEs (worth $5.1 million) they bought a month ago last night.In his speech at the WebX Summit on August 25, he predicted that…

    Continue reading

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    You Missed

    Ethereum

    Coinbase: The market is in a low-priced buying mode, with three leverages moving around

    • By jakiro
    • September 22, 2025
    • 4 views
    Coinbase: The market is in a low-priced buying mode, with three leverages moving around
    Industry

    Variant Partner: Four crypto startup directions that I’m excited about

    • By jakiro
    • September 22, 2025
    • 2 views
    Variant Partner: Four crypto startup directions that I’m excited about
    Project

    Interpretation of Pendle and Boros: Converting capital rates into DeFi derivatives

    • By jakiro
    • September 22, 2025
    • 1 views
    Interpretation of Pendle and Boros: Converting capital rates into DeFi derivatives
    Project

    Arthur Hayes talks about why HYPE sells: HYPE’s Damocles Sword

    • By jakiro
    • September 22, 2025
    • 1 views
    Arthur Hayes talks about why HYPE sells: HYPE’s Damocles Sword
    Investment Research

    Is the US dollar crash really a good thing for Bitcoin?

    • By jakiro
    • September 22, 2025
    • 1 views
    Is the US dollar crash really a good thing for Bitcoin?
    Policy

    The structure of the next cryptocurrency cycle

    • By jakiro
    • September 22, 2025
    • 2 views
    The structure of the next cryptocurrency cycle
    Home
    News
    School
    Search