Data leak
[loss] $120M+
"Hacked Cryptocurrency Platform Begs Hacker to Please Return $119 Million"
Primary Source ↗Financial Loss
$120.0M
(120,000,000 USD)
Incident Details
A hacker was able to use a compromised Cloudflare API key to inject malicious code into the BadgerDAO platform via Cloudflare Workers. They then siphoned currency of various kinds, equivalent to approximately $120 million, out of user accounts over approximately two weeks before being discovered.
Total loss estimated at $120,000,000.
Technical Details
- Initial Attack Vector
- Malicious code injection / supply chain
- Vendor / Product
- BadgerDAO
Timeline
- 2021-12-01 Breach occurred
- 2021-12-01 Publicly disclosed