Quixotic NFT Marketplace Shuts Down After Attack
Quixotic (Opt&in:POstf6U) - the largest NFT marketplace on Optimism - took down its operations after being attacked by an unknown perpetrator.
Quixotic, an NFT marketplace that runs on Optimism, announced that wrongdoers had breached its security and drained ERC-20 tokens. The company assured users with stolen assets would be reimbursed.
The attack of the terrorist organization
Quixotic recently tweeted that criminals attacked its "Offer" feature and stole ERC-20 tokens. The team advised its customers to cancel their offers "as soon as possible," noting that all marketplace activities would be halted.
Quixotic promised that the customers who were affected by the attack will be fully refunded in the upcoming days. Non-fungible tokens listed on the marketplace are not damaged by this cyber assault.
We can confirm that a recent update to our marketplace contract was exploited, allowing a hacker to steal approved ERC-20 tokens
1. We will be refunding all stolen ERC-20 tokens
2. NFTs remain safe and are not affected by the exploit
3. All marketplace activity remains paused https://t.co/wBYt903QVO— Quixotic
– Optimism NFT Marketplace (@quixotic_io) July 1, 2022
The DappRadar report shows that Quixotic is the largest NFT marketplace on Optimism. The platform has attracted over 9,000 users in the past month who have completed more than 22,000 transactions. The registered trading volume for that period was approximately $405,000.
In the Saga, Harmony is a key character,
Last week, another attack in the cryptocurrency space made headlines - that of Harmony Protocol. The latter's Horizon Bridge was compromised by hackers who stole nearly $100 million worth of Ethereum.
Harmony immediately offered the hacker a $1 million reward for returning the stolen funds and sharing information about the vulnerability. The attacker rejected this offer as they started laundering the assets through Tornado Cash.
Elliptic Enterprises's subsequent study concluded that the North Korean hacking group - Lazarus Group was responsible for the theft:
“There are strong indications that North Korea’s Lazarus Group may be responsible for this theft, based on the nature of the hack and the subsequent laundering of the stolen funds.”
The criminals targeted the username and password credentials of Harmony's employees in the Asia Pacific region to breach the protocol's security system. Later, they used automated laundering services to move the stolen funds during nighttime hours.
The company said that the Lazarus Group had already moved over 40% of its $100 million to a Tornado Cash mixer.
