# What the Hack Is Going On? *Author: Donovan Choy* *Published: Oct 15, 2022* *Source: https://www.bankless.com/fr/what-the-hack-is-going-on* --- Dear Bankless nation, *Here’s a recap of the biggest crypto news in the second week of October.* ## **Mango Markets exploit** There’s a bunch of hacks and exploits across DeFi this week, starting with the Solana-based trading protocol Mango Markets. The protocol was fairly widely used, with one of the top transaction counts in Solana Q2. ![](https://storage.ghost.io/c/e4/b7/e4b77544-5a37-4f0b-8824-8440aa348476/content/images/public/images/01a8cdd8-aaa1-4858-a5e6-d891d08309a9_1200x675.png)*Source: [Nansen](https://twitter.com/nansen_ai/status/1571847639624486912/photo/3)* The first thing to note about the Mango Markets (MNGO) hack is that it’s not really a hack, but market manipulation that played by all the rules. A quick summary: The attacker opened a perpetuals position on MNGO with his first account, which he then longed on a second account, shooting up the spot price of MNGO from $0.03 to $0.91. With paper profits on his second account, he took a loan of ~$120M on the protocol that wiped out the protocol’s treasury (see [Joshua Lim’s tweet thread](https://twitter.com/joshua_j_lim/status/1579987667017924610) and [OtterSec](https://twitter.com/osec_io/status/1580019588913192960?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1580019588913192960%7Ctwgr%5E79c89324ec8c2e967929c0a497291d238f456243%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Ffortune.com%2Fcrypto%2F2022%2F10%2F11%2Fmango-markets-trading-platform-on-solana-seemingly-hit-by-exploit%2F) for more details). The attacker then created [a governance proposal](https://app.realms.today/dao/MNGO/proposal/3WZ5DpZXDvNAK4JwPS1HDPzSinEJUGpBC4XXx9vPtnVS) which offered to pay back about half of the loaned money in exchange for not criminally prosecuting him (he also voted yes on it). That vote didn’t pass. As of the latest, Mango DAO is agreeing to pay the attacker a whopping [$47M](https://cryptobriefing.com/mango-dao-agrees-to-pay-hacker-47-million/) bounty. The attacker is [alleged to be ponzishorter.eth](https://karlstack.substack.com/p/exclusive-the-man-who-may-have-milked) AKA Avraham Eisenberg. > [](https://twitter.com/SBF_FTX/status/1580170203664904195) ## **Temple DAO $2.3M hack** Temple DAO is an old Ethereum-based Olympus DAO fork. Users earn a share of its treasury yields by staking  its FRAX-backed native token TEMPLE. The DAO [launched Stax Finance in May](https://staxfinance.medium.com/introducing-stax-v0-1-d346f6bb19f6), introducing liquid staking for stakers. A smart contract error on Stax’s code enabled one hacker to drain ~$2.3M on Oct 11. In its [official post-mortem](https://docs.google.com/document/d/1-chBi1Yqdmz8h81Arg4PIRbSXYFd2nqOKUXCy2c3kZk/edit): > At 9:11am EST, A total of 321,154 xLP tokens were taken from the xLP Staking contract. These tokens were swapped for precisely 1,418,303 $TEMPLE and 1,262,438 $FRAX. 1,418,303 $TEMPLE was then sold for 1,116,243 FRAX. > [](https://twitter.com/staxfinance/status/1579855195693256704) ## **Rabby Wallet hack** Rabby Wallet is a self-custodial Ethereum-based browser extension wallet by DeBank that supports more than 30 chains. The protocol suffered a hack with an estimated loss of [$200K](https://twitter.com/Rabby_io/status/1581272081127571456) due to a smart contract bug. If you’re a user, check for your address and revoke approvals for the wallet’s swap service. > [](https://twitter.com/Rabby_io/status/1579877796201271296) ### **Web3 News Roundup** #### SEC investigates Yuga Labs Do Bored Ape Yacht Club NFTs constitute securities? That’s the question the SEC is asking this week as it turns its regulatory eye to Yuga Labs. As originally reported in [Bloomberg](https://www.bloomberg.com/news/articles/2022-10-11/bored-ape-creator-yuga-labs-faces-sec-probe-over-unregistered-offerings?sref=dkjk6XjG): > The SEC is examining whether certain nonfungible tokens from the Miami-based company are more akin to stocks and should follow the same disclosure rules… [The SEC] is also examining the distribution of ApeCoin, which was given to holders of Bored Ape Yacht Club and related NFTs. ApeCoin, if you recall, was launched back in March as the official token for the Yuga Lab’s “Otherside” Metaverse, around the same time that Yuga Labs bought the CryptoPunks and Meebits NFT collections from Larva Labs. Note that even though APE was airdropped to BAYC holders, and even though Yuga Labs announced its intentions to adopt APE as the token for its own products, ApeCoin was positioned under operation by “[ApeCoin DAO](https://twitter.com/apecoin/status/1504201556165644298?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1504201556165644298%7Ctwgr%5E3ee0d3ec95408f53560ca1b07c703620e16bcaa8%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Fwww.coindesk.com%2Ftech%2F2022%2F03%2F16%2Ftoken-linked-to-bored-ape-yacht-club-launches%2F)”, which in turn is supported by “Ape Foundation” and officially unaffiliated from Yuga Labs. Whether or not the eye of Sauron will accept that distinction is a whole different question. See more on this on [William Peaster’s Metaversal](https://bankless.ghost.io/sec-investigates-bored-ape-creators). > [](https://twitter.com/cryptonesy/status/1521647742929485827) #### Coin Center + David sues the Treasury You can read the full brief [here](https://bankless.ghost.io/content/files/app/uploads/2022/10/1-complaint-coin-center-10-12-22.pdf). Support Coin Center by donating [here](https://gitcoin.co/coincenter). > [](https://twitter.com/jerrybrito/status/1580237327364157440) > [](https://twitter.com/TrustlessState/status/1580253035804372993) > [](https://twitter.com/RyanSAdams/status/1580247282238517249) #### Other news: - 🔥 DevCon updates: [Scroll announces upgraded version of zkEVM testnet](https://twitter.com/daddysether/status/1579681127669051394) - [Polygon zkEVM public testnet goes live](https://blog.polygon.technology/polygon-zkevm-public-testnet-the-next-chapter-for-ethereum/) - [Arbitrum acquires leading L1 consensus client Prysmatic Labs](https://www.coindesk.com/business/2022/10/12/arbitrum-builder-offchain-labs-acquires-prysmatic-labs-a-core-team-behind-ethereums-merge/?utm_medium=referral&utm_source=rss&utm_campaign=headlines) - [zkSync announces launch of Layer-3 testnet Pathfinder in 2023](https://www.theblock.co/post/175823/zksync-says-layer-3-testnet-pathfinder-will-launch-in-q1-2023) - [Kevin Owocki launches venture studio Supermodular](https://twitter.com/owocki/status/1579508166613946368) - ['Quantum-Resistant' L1 blockchain QANplatform suffers bridge hack for $1M+](https://twitter.com/QANplatform/status/1579759166478254080) - [BNYM launches crypto services](https://cointelegraph.com/news/bny-mellon-america-s-oldest-bank-launches-crypto-services) - [Uniswap is on Starknet](https://twitter.com/nethermindeth/status/1578769317952647168) - [Uniswap passes governance vote to deploy V3 on zkSync](https://www.coindesk.com/tech/2022/10/14/uniswap-to-deploy-on-privacy-focused-zksync-following-community-vote/?utm_source=Sailthru&utm_medium=email&utm_campaign=NODE%20OCT%2014%202022&utm_term=The%20Node) - [Across Protocol airdrops](https://twitter.com/acrossprotocol/status/1579849755760287744?s=46&t=UnAHv0ElwUsgJ434ByLTZQ) - [ETH is net deflationary over past week](https://www.coindesk.com/markets/2022/10/13/ether-becomes-deflationary-for-first-time-since-the-merge-coinbase/) 🦇🔊 - [You can now search blockchain address on Google](https://twitter.com/hhua_/status/1579700083314282496) - [Tether announces elimination of commercial paper from reserves](https://twitter.com/Tether_to/status/1580600942323720192) - [Google partners with Coinbase to accept crypto payments](https://www.coindesk.com/business/2022/10/11/google-partners-with-coinbase-to-accept-crypto-payments-for-cloud-services/)