Cetus Theft Incident: Hacker Steals Approximately $223 Million, $162 Million Frozen

Binance News · 2025-05-24T08:43:51.000Z

据 PANews 报道，慢雾发布 Cetus 被盗事件分析，攻击者通过精心构造参数，使溢出发生但绕过检测，以极小 Token 金额换取巨额流动性资产。攻击者利用 checked_shlw 函数缺陷，以 1 个代币成本获得 SUI、vSUI、USDC 等资产。部分资金通过 Sui Bridge 跨链至 EVM 地址，并存入 Suilend 1000 万美元资产。目前 1.62 亿美元被盗资金已被 SUI 基金会冻结。Cetus 已修复漏洞，慢雾建议开发者严格验证数学函数边界条件。

Binance News

--・Verified Binance official account

AI Summary

Hackers used the vulnerability to steal huge amounts of money, and the related assets have been frozen. This incident will prompt the industry to strengthen security measures to prevent future risks.

According to PANews, Slow Mist released an analysis of the Cetus theft incident, where attackers carefully crafted parameters to cause an overflow while bypassing detection, exchanging a small amount of tokens for a large amount of liquidity assets. The attackers exploited a flaw in the checked_shlw function to acquire assets such as SUI, vSUI, and USDC at the cost of just 1 token. Some of the funds were cross-chained to an EVM address through Sui Bridge and deposited into Suilend, amounting to 10 million USD. Currently, 162 million USD of stolen funds have been frozen by the SUI Foundation. Cetus has fixed the vulnerability, and Slow Mist recommends that developers rigorously verify the boundary conditions of mathematical functions.

Disclaimer: Includes third-party opinions. No financial advice. May include sponsored content. See T&Cs.

SUI

3.6072

+0.14%

USDC

0.9995

0.00%

Cetus Theft Incident: Hacker Steals Approximately $223 Million, $162 Million Frozen

Latest News