Hackers exploited a vulnerability in Cream Finance, the decentralized finance (DeFi) platform, flash loaning system to steal all Ethereum-based tokens.
The value of the stolen funds was estimated at around $130 million.
The platform soon fixed the bug exploited in the hack with the help of cryptocurrency platform Yearn.
TPRM report: https://scoringcyber.rankiteo.com/company/creamfinance
"id": "cre235514422",
"linkid": "creamfinance",
"type": "Vulnerability",
"date": "10/2021",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"{'affected_entities': [{'industry': 'Cryptocurrency',
'name': 'Cream Finance',
'type': 'DeFi Platform'}],
'attack_vector': 'Exploit of Flash Loaning System',
'description': 'Hackers exploited a vulnerability in Cream Finance, the '
'decentralized finance (DeFi) platform, flash loaning system '
'to steal all Ethereum-based tokens.',
'impact': {'financial_loss': '$130 million',
'systems_affected': 'Cream Finance DeFi Platform'},
'initial_access_broker': {'entry_point': 'Flash Loaning System'},
'motivation': 'Financial Gain',
'post_incident_analysis': {'corrective_actions': 'Fixed the bug',
'root_causes': 'Flash Loaning System '
'Vulnerability'},
'response': {'containment_measures': 'Fixed the bug',
'third_party_assistance': 'Yearn'},
'title': 'Cream Finance DeFi Platform Hack',
'type': 'Cryptocurrency Theft',
'vulnerability_exploited': 'Flash Loaning System Vulnerability'}