BNB Chain-based decentralized finance (DeFi) protocol Ankr has confirmed that it was affected by a multi-billion dollar exploit on December 1.
The attacker was allegedly able to mint 20 billion Ankr Reward Bearing Staked BNB (aBNBc), a reward token for BNB (bnb) staked in the protocol. Since then, the exploiter has used services like Uniswap, Tornado Cash, and various bridges to exchange and obfuscate the funds and has successfully made around $5 million in coins (USDC)
It seems that @ankr was hacked an hour ago!
The exploiter minted 20T aBNBc and unloaded it in #pancakeswap.
At present, the exploiter has successfully exchanged more than 5 million $USDC.https://t.co/hF1tgNYw0t pic.twitter.com/XIPjBi6wvs
โ Lookonchain (@lookonchain) December 2, 2022
The exploit is believed to be to blame for a vulnerability in the protocol's smart contract or a compromise of private keys.
Ankr just made a quick statement on his Twitter page that his โaBNB token has been minedโ and that he is currently working with exchanges to immediately stop trading the compromised token.
Our aBNB token has been mined and we are currently working with exchanges to immediately stop trading.
โAnkr (@ankr) December 2, 2022
Cointelegraph reached out to Ankr but did not receive an immediate response.
This is a developing story and more information will be added as it becomes available.