|
i'm here for the strong bean fundamentals and the bright, vibrant, bean community
|
# ? Apr 18, 2022 20:49 |
|
|
# ? Jun 6, 2024 12:25 |
|
actually looking at the change proposal they camouflaged it as a donation to Ukraine (which they actually did, not sure if it was part of the attack or some more obfuscation) the code is short and I don't see any obvious flaws so theres probably just some gotcha in how change proposals are added to the bean system, but I guess it explains why the proposal didn't raise any alarm bells
|
# ? Apr 18, 2022 20:50 |
|
ymgve posted:actually looking at the change proposal they camouflaged it as a donation to Ukraine (which they actually did, not sure if it was part of the attack or some more obfuscation)
|
# ? Apr 18, 2022 20:53 |
|
de fi foe fail i smell the tears of a rugpulled whale also why did yall not just name the thread "jackin' the beanstalk"
|
# ? Apr 18, 2022 20:55 |
|
did anyone say "jackin' the beanstalk" yet?
|
# ? Apr 18, 2022 20:56 |
|
because the math is generally not too complex [or at least not too advanced, I guess it can get plenty complex especially when people start intentionally obfuscating it] I think people assume it's easy to make a "perfect" financial instrument but ignoring the human factor makes it end up being what I call high school physics, ie "in a frictionless environment the world works like this" there's a reason it takes dozens of lawyers months to write the contracts for a giant financial deal and it's not because the parties involved like paying for lawyers
|
# ? Apr 18, 2022 21:00 |
|
these are my favorite exploits because the experience for the rest of the users is like going to a casino, handing them $8000 in cash for chips, and the vault your cash goes into is actually an unmarked van with fake plates left unlocked with the engine running and no one paying attention
|
# ? Apr 18, 2022 21:00 |
|
FAUXTON posted:de fi foe fail
|
# ? Apr 18, 2022 21:04 |
|
Booyah- posted:these are my favorite exploits because the experience for the rest of the users is like going to a casino, handing them $8000 in cash for chips, and the vault your cash goes into is actually an unmarked van with fake plates left unlocked with the engine running and no one paying attention it actually goes into a real vault, but then the thieves come with an unmarked 18 wheeler and just put the whole vault on top and drive off because they forgot to fasten the vault to the casino building
|
# ? Apr 18, 2022 21:04 |
|
Boxturret posted:did anyone say "jackin' the beanstalk" yet? no you're the first, what a rapier wit you possess!
|
# ? Apr 18, 2022 21:04 |
|
FAUXTON posted:de fi foe fail Hack and the Beanstalk also works.
|
# ? Apr 18, 2022 21:04 |
|
Booyah- posted:these are my favorite exploits because the experience for the rest of the users is like going to a casino, handing them $8000 in cash for chips, and the vault your cash goes into is actually an unmarked van with fake plates left unlocked with the engine running and no one paying attention the van was only left unlocked with the engine idling because the owners were waiting for it to get a bit more full before running off, they never expected anyone else to look behind the casino!
|
# ? Apr 18, 2022 21:05 |
|
FAUXTON posted:no you're the first, what a rapist wit you possess!
|
# ? Apr 18, 2022 21:06 |
|
that was very hurtful
|
# ? Apr 18, 2022 21:07 |
|
i meant to say rapier
|
# ? Apr 18, 2022 21:09 |
|
ymgve posted:actually looking at the change proposal they camouflaged it as a donation to Ukraine (which they actually did, not sure if it was part of the attack or some more obfuscation) how on earth did they manage to hide an exploit in a 4-line function
|
# ? Apr 18, 2022 21:09 |
|
Boxturret posted:that was very hurtful RPATDO_LAMD posted:how on earth did they manage to hide an exploit in a 4-line function
|
# ? Apr 18, 2022 21:10 |
|
ymgve posted:it actually goes into a real vault, but then the thieves come with an unmarked 18 wheeler and just put the whole vault on top and drive off because they forgot to fasten the vault to the casino building fast five was a documentary about a crypto heist
|
# ? Apr 18, 2022 21:18 |
|
RPATDO_LAMD posted:how on earth did they manage to hide an exploit in a 4-line function one of the lines started with "#include" so top minds are still at work deciphering that one
|
# ? Apr 18, 2022 21:19 |
|
ymgve posted:actually looking at the change proposal they camouflaged it as a donation to Ukraine (which they actually did, not sure if it was part of the attack or some more obfuscation) it looks like there were TWO change proposals: BIP-18 and BIP-19 BIP-18 was initially an empty proposal. this is because change proposals just point to a contract address, and if they pass they execute whatever contract is located there. the contract address specified by BIP-18 was empty BIP-19 was the "donate to Ukraine" proposal, but even though it was actually proposal 19, the contract and code were titled "InitBip18". this was probably a misdirection to keep people from taking any particular notice of the other contract that seemed empty then the attacker waited a day, uploaded their "steal all the money" contract to the empty address specified by the real BIP-18, and used the flashloan to push through an emergency commit instantly before anyone could notice https://twitter.com/wangandyy/status/1515809996075851782
|
# ? Apr 18, 2022 21:26 |
|
NoneMoreNegative posted:Hijack and the Beanstalk
|
# ? Apr 18, 2022 21:39 |
|
Main Paineframe posted:it looks like there were TWO change proposals: BIP-18 and BIP-19 CODE IS LAW
|
# ? Apr 18, 2022 21:41 |
|
https://twitter.com/inherentvibes/status/1515767582841729024
|
# ? Apr 18, 2022 21:50 |
|
lol
|
# ? Apr 18, 2022 21:54 |
|
ymgve posted:it actually goes into a real vault, but then the thieves come with an unmarked 18 wheeler and just put the whole vault on top and drive off because they forgot to fasten the vault to the casino building i liked that scene in that one fast and the furious sequel a lot too yeah
|
# ? Apr 18, 2022 23:12 |
|
stop making raps, for the love of god crypto people, stop making raps
|
# ? Apr 18, 2022 23:13 |
|
Shame Boy posted:stop making raps, for the love of god crypto people, stop making raps just music in general really. throw in any sort of art too bitcoiners should just stop
|
# ? Apr 19, 2022 01:30 |
|
spectacular
|
# ? Apr 19, 2022 02:55 |
|
Boxturret posted:i'm here for the strong bean fundamentals and the bright, vibrant, bean community look man you just don't get the vibrant community the beanfolk have going. I saw a guy type "gm" and I typed "gm" back, you just don't get that kind of rapport anywhere else. I've been posting in this thread for months and not once has anyone wished me a gm. hosed up
|
# ? Apr 19, 2022 03:24 |
|
gm (get maced)
|
# ? Apr 19, 2022 04:09 |
|
go mods
|
# ? Apr 19, 2022 04:48 |
|
quote:Remote Mid and Senior Level Full stack OR Frontend Engineer
|
# ? Apr 19, 2022 05:07 |
|
Maybe I should apply. I mean, I can write lovely unsecure code as well as the next guy.
|
# ? Apr 19, 2022 05:28 |
|
Presto posted:Maybe I should apply. I mean, I can write lovely unsecure code as well as the next guy. but can you write it lovely and insecure enough
|
# ? Apr 19, 2022 05:30 |
|
Boxturret posted:i'm here for the strong bean fundamentals and the bright, vibrant, bean community coffee thread is here.
|
# ? Apr 19, 2022 05:43 |
|
Midjack posted:coffee thread is here. wow what a way to find out stymie was banned
|
# ? Apr 19, 2022 05:53 |
|
Boxturret posted:wow what a way to find out stymie was banned
|
# ? Apr 19, 2022 09:02 |
|
also just found out fireflies guy did a banme a couple years ago,
|
# ? Apr 19, 2022 09:15 |
|
Elysiume posted:holy poo poo, since 2019? the lore goes that jonny (pbuh) sent stymie into such a frothing rage by repeatedly calling him a millionaire that he went on a flameout comparing being told to ignore jonny trolling him to being told to not dress provocatively to avoid being raped (stymie's words, not mine) jean de deux-cent-quatre-vingt-dix is the master of casually trolling horrible people into loving off forever
|
# ? Apr 19, 2022 09:26 |
|
|
# ? Jun 6, 2024 12:25 |
|
Kazinsal posted:the lore goes that jonny (pbuh) sent stymie into such a frothing rage by repeatedly calling him a millionaire that he went on a flameout comparing being told to ignore jonny trolling him to being told to not dress provocatively to avoid being raped (stymie's words, not mine)
|
# ? Apr 19, 2022 09:33 |