News

Sturdy has suffered a security breach resulting in the theft of 442 ETH

Makoto Takahiro

Jun 16, 2023 — 1 min read

Sturdy experienced a security breach that resulted in the theft of 442 ETH. The breach was due to a read-only reentrancy exploit, a type of loophole in smart contracts.

Reentrancy exploits occur when a malicious actor calls a contract, and the contract updates its internal state, does a callback to the actor, and the actor re-calls the original contract. Most crypto hacks due to reentrancy issues are caused by state-altering functions not being guarded against or not following the checks-effects-interactions pattern.

However, SturdyFinance's exploit was a read-only reentrancy issue. In read-only reentrancy, the state-altering function(s) are guarded, but view functions (which only read state) are not protected. The issue occurred when SturdyFinance allowed users to borrow against Balancer LP tokens, which have a known read-only reentrancy exploit in its joinOrExit function.

The attacker used a callback to withdraw tokens, which updated the real token balance but not Balancer's accounting values. This led to Sturdy Oracle calculating the wrong asset price when called on the fallback.

This incident highlights the importance of understanding smart contract vulnerabilities and implementing proper security measures to prevent future attacks.

CZ Calls For Private Trading Infrastructure Following Web3 Market Manipulation

Binance co-founder Changpeng Zhao unveiled plans for a dark pool perpetual swap decentralized exchange in early June 2025. According to CoinTelegraph, CZ addressed structural gaps in Web3 trading infrastructure through an opinion piece published on the platform. His proposal came after a trader known as James Wynn lost nearly $100

Binance Launches CreatorPad Platform For Crypto Content Monetization

Binance launched CreatorPad on its global social platform Binance Square on July 17, 2025. According to Investing Cube, the new monetization platform enables crypto content creators to earn rewards for producing quality content. The platform operates through task-based campaigns where creators complete activities including publishing relevant content, using designated hashtags,

MultiBank Group to List $MBG Token on Gate.io and MEXC During Official Token Generation Event

Hong Kong, PCR, July 18th, 2025, Chainwire MultiBank Group, a global financial derivatives institution, is proud to announce that its $MBG Token will be listed on two new major global cryptocurrency exchanges, MEXC and Gate.io, on the day of its official Token Generation Event (TGE), July 22, 2025, in

GSR Leads $100M Private Placement into Nasdaq-listed MEI Pharma to Launch First Institutional Litecoin Treasury Strategy Alongside Charlie Lee

NEW YORK, United States, July 18th, 2025, Chainwire GSR, crypto's capital markets partner, today announced an investment and strategic partnership with MEI Pharma, Inc. (NASDAQ:MEIP) (“MEI”), in which it will serve as both strategic advisor and digital asset treasury manager. The $100 million private investment in public

Read more

CZ Calls For Private Trading Infrastructure Following Web3 Market Manipulation

Binance Launches CreatorPad Platform For Crypto Content Monetization

MultiBank Group to List $MBG Token on Gate.io and MEXC During Official Token Generation Event

GSR Leads $100M Private Placement into Nasdaq-listed MEI Pharma to Launch First Institutional Litecoin Treasury Strategy Alongside Charlie Lee