Concentric Hack
Incident Overview
Concentric Finance, a yield aggregator on Arbitrum, exploited via social engineering attack, losing $1,654,517 worth 715.7 WETH.
Concentric Finance is a yield aggregator project running on the Arbitrum chain. On January 22, 2024, the project suffered a severe security breach due to a targeted social engineering attack on one of the team members holding the deployer wallet. The attacker compromised the private key for the protocol's deployer account and used it to upgrade the vaults, mint new LP tokens, and subsequently drain the vaults of their assets, resulting in a loss of approximately $1,654,517 worth 715.7 WETH.
Attacker Address:
https://arbiscan.io/address/0x105f52fc…14E4A1
Funds Holders as of Jan 23, 2024:
https://arbiscan.io/address/0x17865c33…f94c34
https://arbiscan.io/address/0x1F14E386…fbC42d
https://arbiscan.io/address/0xFD681A9a…C76030
https://arbiscan.io/address/0x5c0E945F…532AEc
Malicious Transactions:
https://arbiscan.io/tx/0x00554de1…e43bcd
https://arbiscan.io/tx/0xc2c73baf…cdd982
https://arbiscan.io/tx/0x146d7af4…5f5f1f
https://arbiscan.io/tx/0xd9036566…558e3b
Incident Report
Protocol Information
What the Attacker Needed to Succeed
Understanding the prerequisites for this type of attack helps auditors identify protocols that are most at risk and helps developers build better defenses.
What Auditors Should Check
If you're auditing a protocol with similar architecture to Concentric, these are the critical security checks that could have prevented this incident (January 2024).
- Verify all logic paths related to Private Key Compromised (Social Engineering) / Access Control are guarded by proper access controls and input validation - see the Access Control Attacks attack class for patterns
- Review privileged functions (owner, admin, governance) for potential abuse vectors - centralization risks should be documented and bounded with timelocks or multi-sigs
Master these auditing techniques with hands-on labs and real exploit scenarios in the Smart Contract Hacking course.
Free TrialRelated Attack Classes
The technique used in this hack maps to these vulnerability classes in our security curriculum:
Sources & References
- 01
-
02
Web Archive https://archive.ph/APLV0
Learn to Prevent the Next Concentric
The Concentric hack is one of many attacks that skilled auditors are trained to detect before deployment. Master real exploit patterns and defense techniques with hands-on Web3 security training.