# 2022黑客之年！

**Published by:** [yingmu](https://paragraph.com/@46628/)
**Published on:** 2022-10-07
**URL:** https://paragraph.com/@46628/2022

## Content

BSC被盗200万枚BNB（价值5.8亿u）。 看了sam对这次安全事件的分析，Binance Bridge（官方跨链桥）使用的merkle tree库（iavl)有漏洞，让黑客能够伪造leaf和proof，从合约中提取任意数量的资产。 黑客提了两笔，每笔100w BNB，然后存到Venus，把USDT，BUSD等资产借光，再通过跨链桥逃到ETH和Fantom链。 2022黑客之年！

## Publication Information

- [yingmu](https://paragraph.com/@46628/): Publication homepage
- [All Posts](https://paragraph.com/@46628/): More posts from this publication
- [RSS Feed](https://api.paragraph.com/blogs/rss/@46628): Subscribe to updates