Cetus Theft Incident: Hacker Steals Approximately $223 Million, $162 Million Frozen

Binance News · 2025-05-24T08:43:51.000Z

据 PANews 报道，慢雾发布 Cetus 被盗事件分析，攻击者通过精心构造参数，使溢出发生但绕过检测，以极小 Token 金额换取巨额流动性资产。攻击者利用 checked_shlw 函数缺陷，以 1 个代币成本获得 SUI、vSUI、USDC 等资产。部分资金通过 Sui Bridge 跨链至 EVM 地址，并存入 Suilend 1000 万美元资产。目前 1.62 亿美元被盗资金已被 SUI 基金会冻结。Cetus 已修复漏洞，慢雾建议开发者严格验证数学函数边界条件。

Binance News

--・Verified Binance official account

AI Summary

Hackers used the vulnerability to steal huge amounts of money, and the related assets have been frozen. This incident will prompt the industry to strengthen security measures to prevent future risks.

According to PANews, Slow Fog released an analysis of the Cetus theft incident, where attackers carefully crafted parameters to cause an overflow while bypassing detection, exchanging a minimal token amount for substantial liquidity assets. The attackers exploited the checked_shlw function flaw to obtain assets such as SUI, vSUI, and USDC at the cost of just one token. Some funds were cross-chain transferred to an EVM address via the Sui Bridge and deposited into Suilend with assets of $10 million. Currently, $162 million of the stolen funds have been frozen by the SUI Foundation. Cetus has fixed the vulnerability, and Slow Fog advises developers to rigorously validate boundary conditions of mathematical functions.

Disclaimer: Includes third-party opinions. No financial advice. May include sponsored content. See T&Cs.

SUI

3.7116

+7.46%

USDC

0.9994

-0.02%

Cetus Theft Incident: Hacker Steals Approximately $223 Million, $162 Million Frozen

Latest News