The $ARB Arbitrum Airdrop; Euler Finance Hack
What's going on with the Arbitrum Airdrop Drama; Euler hacker returns stolen funds
Dear Bankless Nation đ´,
In this edition of the DeFi Download, weâre going in a slightly different direction but still giving you the educational content youâre used to. Today, Austin Foss updates us on Arbitrumâs token launch, DAO, and governance drama.
Afterwards, he gives us the down low on the Euler Finance hack and closes the chapter on the hacker-turned-researcher after they returned the stolen funds to Euler.
Note that Twitter has disabled the ability to embed tweets in Substack thatâs why things are a bit wonky. If you like the new direction of the DeFi Download, let us know in the comments!
This is the DeFi Download âĄď¸
Contributors: BanklessDAO Writers Guild (Jake and Stake, Austin Foss)
This is the official newsletter of BanklessDAO. To unsubscribe, edit your settings.
The Arbitrum L2 Level Up
Author: Austin Foss
One of the earliest L2s to launch on Ethereumâs mainnet, Arbitrum has become a well recognized project in the Ethereum ecosystem. Recently, a lot of attention has been given to the various zk-rollups debuting on main-net, but the optimistic rollup has recaptured the spotlight in recent weeks following the announcement and launch of their ARB token and all the implications that came with that news.
Arbitrum's Journey So Far
Both the Matic and xDAI chains, now known as Polygon and Gnosis Chain, beat Arbitrum to Ethereum's mainnet, but Optimism was even later at the very end of 2021. Launching in May 2021 Arbitrum stands out from the other three scaling solutions as the first Ethereum Virtual Machine (EVM) equivalent rollup.
Development on Arbitrum is led by a team called Offchain Labs who formed the Arbitrum Foundation. After more than a year of successful growth, the team launched Arbitrum Nova, an entirely separate rollup designed for higher frequency applicationsâvery similar to Gnosis Chain's use case. To differentiate between the two rollups the original one is called Arbitrum One.
In February of this year, Offchain labs announced the next step "Beyond EVM Equivalence" called stylus. Using webassembly smart contracts, this tool would allow developers to program their dApps in languages like C++ and Rust.
Over the course of this nearly two year time frame, Arbitrum has successfully operated almost the whole time, suffering two outages, and reaching more than one million transactions per day or ~11.57 transactions per second (TPS).
Airdrop Distribution
Not long after the Stylus announcement, Offchain Labs officially announced on March 16 that the Arbitrum token airdrop would happen a week later on March 23.
In this single announcement were several major updates. First, because of the launch of the ARB token there would now be an Arbitrum DAO independent from Offchain Labs and the Arbitrum Foundation. Second, the DAO can grant licenses for new L2s built on the Arbitrum tech stack. Third was the reveal for support within Arbitrum One, or any Arbitrum powered L2, for L3 chains. Within Arbitrum One and Nova L3s "are automatically granted a free and perpetual license".
To the distribution of the ARB tokens themselves, 56% of the 10 billion (B), 5.6B ARB, has been allocated for the community but just 12.75%, 1.275B ARB, was included in the airdrop. Of the remaining 43.25% to be given to the community "The Arbitrum Foundation and DAO will be tasked with distributing the additional community tokens over time." Leaving the remaining 44% which is not reported in the initial announcement unaccounted for.
Something else absent from the announcement were any plans to decentralize the Arbitrum One sequencer by means of the ARB token and a staking mechanism. Not to say that this means it won't happen, but this could be an indication that the Foundation and Offchain labs will retain control of Arbitrum One, and a decentralized alternative might have to be licensed by the DAO.
Governance Gets Messy
Almost immediately, just over a week after the airdrop, there was a "lively" discussion happening surrounding the first Arbitrum Improvement Proposal (AIP).
AIP-1 was a proposal (asterisk on proposal) that did a number of things including the implementation of the DAO's constitution and further allocation of ARB tokens. It's how some of the tokens were to be allocated that caused said lively discussion.
Even though this "proposal" was put up for a vote on Snapshot the contents of AIP-1 were apparently not up for discussion. In a follow up post made on April 2, intending to bring clarity to the purpose of the AIP, and what it was not.
Much of the disagreement around the proposal focused on the 750M ARB to be used in "the Administrative Budget Wallet". Despite their attempt at providing clarity, and trying to communicate that these actions had already been decided would be, or had already been, taken, the vote on Snapshot failed to pass with 100M ARB, 76.67% of total ARB that voted against.
Two days later the Arbitrum Foundation followed up with another thread on Twitter.
Taking the community's feedback to heart, the foundation split the overly broad proposal into two separate pieces, AIP-1.1 and AIP-1.2.
L2 Leader on Ethereum
Regardless of the rocky start at governance by the DAO and the Foundation it should not overshadow the momentum Arbitrum has.
Currently neck and neck with Ethereum, the L1 it settles to, in daily TPS and is by far the most active L2 in terms of TPS, for now. ZkSync's Era launch a few weeks ago has already almost caught up with Optimism.
Gone in a Flash
Author: Austin Foss
Eular Finance, a DeFi lending protocol on Ethereum's main-net, suffered a DeFi exploit on March 13, 2023, draining more than 200M USD at block number 16817996. Peckshield, "A blockchain security and data analytics company", broke the story just 9 minutes after the block was time stamped:
The Defiant reported the next day that this was spread over "nearly $136M of Lido Financeâs stETH, $34M of USDC, $18.5M of WBTC and $8.8M in DAI."
Euler Finance
Lending protocols are a staple of modern DeFi with a wide variety of protocols in existence. Euler claims innovations such as "... permissionless lending markets, reactive interest rates, protected collateral, MEV-resistant liquidations, multi-collateral stability pools, and much more." In a crowded and competitive space doing something new can help your project stand out and attract new users, but doing so brings the greater risk that something can go wrong.
Launching to main-net on December 1, 2021, the protocol was just over a year old when this exploit happened despite having numerous audits conducted over the course of that time.
Two days after the attack Euler posted a 1M USD bounty for help in recovering the funds.
Flash Loans
What allowed the attacker to drain the lending protocol so quickly was an exploit called a flash loan attack. These were made possible when another lending protocol, Aave, first introduced flash loans; "new DeFi primitive enabling uncollateralized loans that can be used in the context of a single transaction."
In essence, this allows any DeFi user, who can afford the gas, to execute a loan that borrows against the whole of a protocol's available collateral with the caveat that this loan must be paid back in the same block. This has several use cases such as arbitrage opportunities, but as Chainalysis points out in their report in the Euler Finance exploit they can also be used by hackers for such things as "to manipulate DeFi protocolsâ pricing oracles."
Chainalysisâ aforementioned evaluation of this particular flash loan attack states that "a liquidity issue in the DonateToReserve function" was causing an imbalance in eTokens (representing collateral) and dToken (representing debt). Broken down step by step the transaction summarizes to the following:
Borrow 30M DAI from Aave
Deposit 20M DAI to Euler, borrowing 200M eDAI
Use the remaining 10M DAI from Aave to pay back part of the Euler loan
Borrow more eDAI
Liquidate the Euler loan because eDAI < dDAI
Withdraw 38.9 DAI by redeeming eDAI & dDAI
Repay the 30M DAI flash loan
Swap USDC & WBTC for DAI & ETH because the former two ERC20 tokens have functions to freeze funds built into their token contracts
Chainalysis links to a thread by Igor Igamberdiev who provides far more detailed nuance to the details of what happened. He concludes that the "The root cause is the lack of checking liquidity in the donateToReserves() function".
Looking at a Dune Analytics dashboard of Euler you can see the significant spike in TVL this huge, momentary, loan caused.
For Euler, this was a case where leveraging the composability of different DeFi protocols led to unexpected risks and paths for abuse to open up.
On Chain Negotiations
Negotiations began on March 14 when Euler sent an on-chain message to the attacker.
We understand that you are responsible for this morning's attack on the Euler platform. We are writing to see whether you would be open to speaking with us about any potential next steps. - Euler Finance
This thread was noticed and tracked by 0xngmi on Twitter, of the DeFiLlama team.
After 24 hours and no response to the offer for the hacker to return90% and keep 10% of the stolen funds Euler sent a third message on March 15:
The simplest way to move forward today is to return 90% of both the DAI and ETH under your control to the EulerDAO treasury address: 0xcAD001c30E96765aC90307669d578219D4fb1DCe. Then investigations can be halted, and the focus here can turn to distribution of that back to protocol users, without needing to go the legal route. - Euler Finance
Unexpectedly, two days later on March 17, the exploiter sent 100 ETH to an address flagged as belonging to last year's record setting Ronin Bridge hacker, at the same time they sent 1000 ETH to another of their own wallets (Euler Finance Exploiter 4) which was then anonymized using Tornado Cash.
Chainalysis later updated their report commenting on this behavior where they noted "itâs possible that this movement of funds was an attempt at misdirection by another hacking group." This makes some sense when considering why the Ronin hacker would need to set up secure communication channels with an actor they are already in contact with, and why that would days after the Euler exploiter sending 100 ETH to them.
Three days later, March 20, the exploiter sent a transaction to the Euler Finance Deployer address with a message extending an olive branch.
We want to make this easy on all those affected. No intention of keeping what is not ours. Setting up secure communication. Let us come to an agreement. - Euler Exploiter
Shortly after followed by a message the next day from the Ronin hacker's address that sent a 2 ETH transaction back to the attacker with a message reading:
Decrypt with the private key of 0xb66cd966670d962c227b3eaba30a872dbfb995db (https://github.com/LimelabsTech/eth-ecies).
[Encrypted Text] - Ronin hacker
This was the last of on-chain messages until a week later.
Recoverable Funds Returned
While these communications were happening "On-chain sleuth" ZachXBT was reporting as early as March 18 that funds were starting to be returned to Euler Finance by the attacker.
In an article published on April 4 Decrypt reported that "between March 25 and March 28, the Euler exploiter returned a total of 84,951 ETH worth $147.8 million, as well as $29.9 million in DAI."
It was on March 28 that the attacker resumed public on-chain messages, these directed at the victims of their actions and begging for forgiveness.
The rest of the money will be returned ASAP. I only look after my safety, and that is the reason for the delay. I'm sorry for any misunderstanding. Please read my next message. - Euler Exploiter
Jacob here. I don't think what I say will help me in any way but I still want to say it. I fucked up. I didn't want to, but I messed with others' money, others' jobs, others' lives. I really fucked up. I'm sorry. I didn't mean all that. I really didn't fucking mean all that. Forgive me. - Euler Exploiter
Almost a week later, April 3, two more transactions were sent returning 8080 ETH and 2500 ETH to the Euler Finance multisig.
In total this is approximately 98.5k ETH, at the current market price of 1900 USD that is 187.2M ETH. Combined with the 29.9M DAI also returned that results in a total current value of ~217M USD has successfully been returned to the protocol.
Resolution
Euler Finance broke their silence at the end of the day, April 3, closing the 1M USD reward for information and teasing a larger update the next day when they released the following statement.
A larger thread was also published to Twitter providing more context. They emphasized that all efforts now will go towards making the users of their protocol whole.
One tweet of that thread stands out, giving a hint why the attacker chose* to return all the recoverable funds. Stating that this "is a reminder to all would-be black hats that it is very difficult to remain anonymous online if thereâs a sufficiently skilled and motivated group of people looking for you."
Considering that the attack began returning funds the very next day after using Tornado Cash is telling that the strength of that privacy tool's anonymity set may be weakening, or at the very least there are still practices users of privacy protocols must follow if they are to properly preserve their anonymity. We might never know exactly what misstep the attacker made, forcing themselves into a corner.
This exploit serves as a reminder for us that even with a protocol that has been live on main-net for more than a year, and had numerous audits done to their code, DeFi is always risky.
Project Releases đ
Hand-picked updates to help you understand the current state of the DeFi ecosystem
Immutable and Polygon join forces
The Immutable zkEVM operated by Polygon is an EVM-compatible ZK-rollup
Created to be a dedicated zkEVM for NFT gaming with a focus on game studios and developers
âThe first EVM-compatible solution for games with enforceable royalty fees.â
ZK EVM-compatibility allows game developers to redeploy their smart contracts more easily. This will lead to greater adoption of Immutableâs developer platform.
IMX will be used as the gas token
Not yet launched
(Jakesâ Take: Interesting partnership. While Polygon has had a lot of success doing business development, this partnership is evident that they havenât been doing a good enough job attracting web3 game developers to their platform. On the other hand, Immutable is completely focused on the gaming market with an NFT platform, wallet, and SDK for game developers. Immutable began by creating the NFT game âGods Unchainedâ, but Immutable also has a services business that helps other developers build NFT games using Immutable libraries. They have a great relationship with game developers and are often the first place devs go to integrate with blockchain tech.
Remember Immutable partnered with Starkware in May 2020 to create Immutable X, a Layer 2 solution powered by StarkEx. Immutable is testing the waters and expanding to different solutions. Given Polygonâs user base and BD skills, it makes sense for them to expand and reach a broader audience. At the end of the day, the end user doesnât care what scaling solution theyâre using as long as they can do what they want to do cost-effectively: play the game they want to play and get liquidity for their NFTs. Putting companies with IP and relationships with developers in the driverâs seat.)
Ledger releases browser extension
Use bluetooth to link Nano X hardware wallet to dApps on your browser
Warns you of potentially dangerous smart contracts
Preview transactions with a focus on safety
(Jakeâs Take: Ledger is moving up the stack to own the entire user experience. Using the Ledger hardware wallet with many DeFi applications is difficult because thereâs no native support for it in the Ledger Live Desktop app. Ledger has partnered with Metamask to integrate hardware-based transaction signing, but now ledger is moving to own a bigger piece of the stack. Iâd consider this a soft-rollout because theyâre only launching on Safari and MacOS so far. They plan to integrate with Chrome and Windows OSâs in the future.)
ZK EVMS keep pushing
zkSync launches zkEVM, zkSync Era
https://twitter.com/zksync/status/1639251197898129408Â
Polygon Launches zkEVM
https://twitter.com/0xPolygonLabs/status/1640813408898502688
Consensys launches zk rollup Linea
(Jakeâs Take: Not much to comment on here. ZK-tech keeps on chugginâ.)
Maker to increase diversity of collateral that backs DAI
Move away from real-world assets and move towards crypto-based assets
Less USDC, more crypto collateral
Changes to Makerâs governance model
https://twitter.com/MakerDAO/status/1641106700756213760
(Jakeâs Take: Looks like Maker is reacting to the downsides of having DAI being significantly backed by RWAs like USDC via the Peg Stability Module or PSM. The PSM will tighten DAIâs range to its peg of $1 by acting as a release valve when the value of DAI swings too widelyâusually as a result of volatility.
After the SVB collapse, USDC holders started selling and the USDC-PSM saw a flurry of activity. The PSM acts as a tether that pulls the two assets together, and where one goes so does the other. DAI fell at the same rate as USDC before the DAO reconfigured the PSMs.)
Chirping Birds
đĽ and đ§ tweets from across the DeFi ecosystem
https://twitter.com/sassal0x/status/1637702828306358272
https://twitter.com/Fiskantes/status/1637497040933625858
https://twitter.com/friedberg/status/1641206963538399234
BANK utility (BanklessDAO token)
With over 5,000 holders, BANK is one of the most widely held social tokens in crypto. So it bears asking, where are the best places to put our BANK to use? The five protocols below will allow you to deposit BANK in a liquidity pool and earn rewards. To get going, just click on the name, connect to the app, filter by BANK, and start earning passive income.
âď¸Â Balancer
Balancer has two 80/20 liquidity pools, meaning that you are required to deposit 80% BANK and 20% ETH in the pool. There is one pool on Ethereum and another on Polygon. Once youâve provided liquidity, youâll receive LP tokens. Keep an eye out for opportunities to stake these LP tokens. There is nearly 500,000 USD in the two Balancer liquidity pools.
đŁÂ SushiSwap
SushiSwap has a 50/50 BANK/ETH pool. As with Balancer, you will receive LP tokens, and while you canât stake them on SushiSwapâs Onsen Farm yet, you may be able to in the future. Liquidity providers earn a .25% fee on all trades proportional to their pool share. The SushiSwap pool has a little over 100,000 USD in liquidity.
â Rari Fuse PoolDeprecated Soon
This will be deprecated soon. The Rari Fuse Pool allows you to borrow against your BANK or earn huge APY by providing assets like DAI to the pool. At present, all borrowing is paused for this pool. There is over 450,000 USD deposited in the Pool
đŚÂ Uniswap
The Uniswap V3 liquidity pool is 50/50 BANK/ETH, and provides a price oracle for the Rari Fuse Pool. By depositing in the Uniswap pool, you can earn fees and help enable borrowing on Rari. This pool currently has over 500,000 USD in liquidity.
đŞÂ Arrakis
You can also provide liquidity to the Arrakis Uniswap V3 pool. The ratio is about 2/1 BANK/ETH. This pool is new, and only has a bit more than $6,000 in liquidity. In the future, you may be able to stake your BANK/ETH LP tokens within the protocol to earn additional rewards.