How prices from the future fooled a crypto oracle into paying out up to $24 million
Ostium, an on-chain perpetuals buying and selling platform, stated a five-minute safety incident induced losses from its public liquidity vault. Security corporations estimated the exploit at up to $24 million.
Co-founder Kaledora Kiernan-Linn confirmed that the challenge ran from 14:18 to 14:23 UTC on July 15 and affected the public Ostium Liquidity Provider (OLP) vault. She stated the workforce recognized it inside minutes and coordinated a buying and selling pause inside the hour. The assertion didn’t give a definitive loss complete, determine the root trigger, or present a last postmortem.
Security corporations stated approved knowledge, relatively than a lacking signature, sat at the heart of the incident. Blockaid and Cyvers stated a registered PriceUpKeep forwarder submitted future-dated, approved oracle experiences that created synthetic buying and selling earnings.
SlowMist stated a licensed signer provided validly signed manipulated knowledge used for repeated worthwhile trades. Those descriptions stay third-party findings pending Ostium’s postmortem.
Cryptographic authentication can set up that a permitted key signed a report. Price plausibility, timestamp freshness, and settlement security require separate controls.
The OstiumVerifier code linked from Ostium’s security documentation recovers an ECDSA signer and checks whether or not the signer is permitted, however that verifier operate doesn’t implement a price-plausibility check or timestamp sure.
The code doesn’t seem to determine which implementation was lively throughout the incident or whether or not separate contracts utilized these checks. Any timestamp, replay, price-deviation, or multi-source safeguards would have to function elsewhere in the execution path.
Ostium’s protocol documentation states that the OLP vault holds merchants’ collateral and pays out successful trades instantly on-chain. If synthetic earnings had been accepted for settlement, vault liquidity funded the payouts.
Published estimates rose as tracing continued. Blockaid put the payout close to $18 million, Cyvers estimated $23.7 million, and PeckShield later described roughly $24 million drained.
SlowMist’s decrease $11.86 million determine seems to monitor one 11,862,444.782 USDC vault outflow seen in its cited transaction.
PeckShield stated the extracted USDC was swapped into 12,080 ETH and that 10,540 ETH had reached Tornado Cash by its replace. Kiernan-Linn stated Ostium was working with legislation enforcement, SEAL 911, and third-party safety specialists.
The mechanics distinguish Ostium from a related challenge with Bonzo Lend, a Hedera lender hit 4 days earlier. Bonzo’s incident report stated its verifier accepted a proof carrying no legitimate signature. In Ostium’s case, safety corporations allege the experiences got here via a licensed signer path: authentication succeeded, however the knowledge was allegedly unsafe.
Ostium nonetheless has to set up whether or not a signer key was compromised, a licensed operator acted maliciously, or one other privileged path was abused.
Its remediation might be judged by whether or not signer isolation, tight timestamp bounds, unbiased value checks, fee limits, and circuit breakers can stop one trusted path from turning minutes of unhealthy knowledge into one other vault payout.
The put up How prices from the future fooled a crypto oracle into paying out up to $24 million appeared first on CryptoSlate.

