Dego Finance Hack
Incident Overview
Hacker compromised contract deployer's key, withdrew all funds, removed liquidity, and transferred assets to external wallets.
The hacker managed to compromise the contract deployer's key. This gave them access to all funds which they promptly withdrew. They then proceeded to remove liquidity from the contract.
The funds were then transferred to the hacker's external wallet. A part of the stolen funds was also transferred to another external wallet. The DEGO team has attempted to contact the hacker but it is unclear if they have been successful.
The exploit affected multiple chains including BSC, Cronos, and Ethereum.
Hacker's Address:
https://bscscan.com/address/0x118203b0…ef5c91
BSC Transfers:
https://bscscan.com/tx/0x37c471f8…e7fa3e
https://bscscan.com/tx/0x586dcc85…178ae6
https://bscscan.com/tx/0x62dc9b35…8ab4b6
https://bscscan.com/tx/0xe5dfcbc6…069e67
BSC Liquidity Removals:
https://bscscan.com/tx/0x8c1747c9…ad84d6
https://bscscan.com/tx/0xc7f88c86…d8e288
BSC Withdrawals:
https://bscscan.com/tx/0xa4fc71b3…43245f
https://bscscan.com/tx/0xfe67e929…c8e7f8
https://bscscan.com/tx/0xfa8ed0fe…a1442f
https://bscscan.com/tx/0x4ba4809c…93290d
Transfer to External Wallet:
https://bscscan.com/tx/0xdf5762c2…b4ec67
Cronos Address:
https://cronoscan.com/address/0x118203b0…ef5c91#tokentxns
Ethereum Transfers:
https://etherscan.io/tx/0x3beef4cc…1a08cc
https://etherscan.io/tx/0x73529e7f…b50995
https://etherscan.io/tx/0x0e9dde95…2d671f
https://etherscan.io/tx/0x62e10626…ae7272
Ethereum Withdrawals:
https://etherscan.io/tx/0x0092b357…326233
https://etherscan.io/tx/0x5855a0c1…02cf63
https://etherscan.io/tx/0xbabb03a9…385fa7
Ethereum Tornado Deposits:
https://etherscan.io/tx/0x152f91e2…fa5a2f
https://etherscan.io/tx/0x0c84d2c6…a771dd
https://etherscan.io/tx/0x59dc8303…bc8e3a
https://etherscan.io/tx/0x59871d49…53fb73
Transfer to External Wallet:
https://etherscan.io/tx/0xf837e753…3be350
DEGO Team's Attempt to Contact Hacker:
https://bscscan.com/tx/0x065fa878…e4ced5
Incident Report
Protocol Information
Market Context at Time of Hack
What the Attacker Needed to Succeed
Understanding the prerequisites for this type of attack helps auditors identify protocols that are most at risk and helps developers build better defenses.
What Auditors Should Check
If you're auditing a protocol with similar architecture to Dego Finance, these are the critical security checks that could have prevented this incident (February 2022).
- Verify all logic paths related to Access Control are guarded by proper access controls and input validation - see the Access Control Attacks attack class for patterns
- Review privileged functions (owner, admin, governance) for potential abuse vectors - centralization risks should be documented and bounded with timelocks or multi-sigs
Master these auditing techniques with hands-on labs and real exploit scenarios in the Smart Contract Hacking course.
Free TrialRelated Attack Classes
The technique used in this hack maps to these vulnerability classes in our security curriculum:
Sources & References
Learn to Prevent the Next Dego Finance
The Dego Finance hack is one of many attacks that skilled auditors are trained to detect before deployment. Master real exploit patterns and defense techniques with hands-on Web3 security training.