Blog

On 28th of May 2025, Cork Protocol suffered an $11M exploit due multiple security weaknesses, culminating in a critical access control vulnerability in their Uniswap V4 hook implementation. The attacker exploited missing validation in the hook’s callback functions fooling the protocol into thinking that valuable tokens (Redemption Assets) were deposited by the attacker, thus crediting the attacker with a number of derivative tokens that could be exchanged back to other valuable tokens. The attacker also exploited a risk premium calculation, which compounded the attack. Among other things, this incident highlights the importance of proper access control in Uniswap V4 hooks and the risks of highly flexible open designs, which are very hard to secure.

30 May 2025

The Cetus AMM $200M Hack: How a Flawed “Overflow” Check Led to Catastrophic Loss

On May 22, 2025, the Cetus AMM on the Sui Network suffered a devastating hack resulting in over $200 million in losses. This incident represents one of the most significant DeFi exploits in recent history, caused by a subtle but critical flaw in “overflow” protection. This analysis dissects the technical details of the exploit and examines when this issue was introduced, fixed, and re-introduced. Executive Summary The attacker exploited a vulnerability that truncates the most significant bits in a liquidity calculation function of Cetus AMM. This calculation is invoked when a user opens an LP position. When opening such position, a user can open a large or small position by specifying a “liquidity” parameter (what fraction of the pool you would like to get in return), and supplying the corresponding amount of tokens. By manipulating the liquidity parameter to an extremely high value, they caused an overflow in the intermediate calculations that went undetected due to a flawed truncation check. This allowed them to add massive liquidity positions with just 1 unit of token input, subsequently draining pools collectively containing hundreds of millions of dollars worth of token.

23 May 2025

Dedaub Partners with Immunefi to Bring Native Firewall Capabilities to Magnus

Dedaub Partners with Immunefi to Bring Native Firewall Capabilities to Magnus Dedaub has joined forces with Immunefi to develop an onchain firewall for the Magnus platform. This partnership brings together two leading teams in web3 security with a shared mission to improve smart contract resilience by building a system that can detect and block malicious transactions before they execute onchain.

5 May 2025

Dedaub at EthCC[8] | Smart Contract Security Before and After Deployment

Dedaub at ETHCC Dedaub is heading to Cannes! As a WAGMI sponsor at EthCC[8], we’re bringing …

11 June 2025

Dedaub Partners with Immunefi to Bring Native Firewall Capabilities to Magnus

Dedaub Partners with Immunefi to Bring Native Firewall Capabilities to Magnus Dedaub has joined …

5 May 2025

Dedaub at ETHDenver 2025 | Showcasing Real-Time Security Monitoring

Dedaub is excited to sponsor ETHDenver once again! This year, we will showcase the Dedaub Security …

18 February 2025

Dedaub Security Suite Updates Q4-24

FREE MONITORING for all! The Dedaub Security Suite continues to evolve with features designed to …

12 December 2024

Research

VIEW ALL

Transient Storage in the wild: An impact study on EIP-1153

With the recent introduction of transient storage in Ethereum, the landscape of state management within the Ethereum Virtual Machine (EVM) has evolved once again. This latest development has prompted us at Dedaub to take a fresh look at how data is stored and accessed in the EVM ecosystem, as well as analyze how the new transient storage is used in real-world applications. It’s important to note that even though transient storage has properly been integrated into the EVM, the transient modifier is still not yet available in Solidity. Therefore, all usage of transient storage is directly from the TSTORE and TLOAD opcodes using inline assembly, meaning usage is not that widespread yet, and could also be at a higher risk of vulnerability.

EIP-3074 Impact Study

Pectra’s EIP-3074, and its Impact on Deployed Smart Contracts Introduction Ethereum’s end-user experience (UX) is about to be significantly enhanced with the introduction of EIP-3074, which will be part of the upcoming Pectra update. This proposal intends to improve wallets’ functionality by directly enabling more complex operations similar to smart contracts within traditional wallet architectures. It improves blockchain user UX and solves problems like transaction bundling and sponsored transactions. For a study commissioned by the Ethereum Foundation, Dedaub identified the potential impacts of EIP-3074 on all known deployed smart contracts as of the date of the study. The results of our analysis are becoming increasingly relevant as we approach the implementation EIP-3074. You can read the original study here.

Ethereum improvement proposal 4788 | EIP-4877 Summary

Dedaub was commissioned by the Ethereum Foundation to perform a security audit of the bytecode of a smart contract that was introduced to the EIP-4877 in a recent change, enabling the on-chain storing and accessing of the beacon block roots of recent blocks. In this blog post, titled “EIP-4877 summary,” we highlight key insights from the audit. You can access the complete report here. The audited contract uses the block’s timestamp as a key for their parent beacon blocks’ roots. To bind the contract’s storage footprint while retaining accurate information, a set of two ring buffers are used (using a HISTORY\_BUFFER\_LENGTH with a value of 98304):

Transient Storage in the wild: An impact study on EIP-1153

With the recent introduction of transient storage in Ethereum, the landscape of state management …

EIP-3074 Impact Study

Pectra’s EIP-3074, and its Impact on Deployed Smart Contracts Introduction Ethereum’s end-user …

Ethereum improvement proposal 4788 | EIP-4877 Summary

Dedaub was commissioned by the Ethereum Foundation to perform a security audit of the bytecode of a …

TECH DEEP DIVE

With more than 200 Security audits, see how we've helped some of the most prominent names in Web3.

VIEW ALL DEEP DIVES

The $11M Cork Protocol Hack: A Critical Lesson in Uniswap V4 Hook Security

The Cetus AMM $200M Hack: How a Flawed “Overflow” Check Led to Catastrophic Loss

TECH DEEP DIVE

With more than 200 Security audits, see how we've helped some of the most prominent names in Web3.

VIEW ALL DEEP DIVES

The $11M Cork Protocol Hack: A Critical Lesson in Uniswap V4 Hook Security

The Cetus AMM $200M Hack: How a Flawed “Overflow” Check Led to Catastrophic Loss

All Posts

VIEW ALL

News

Dedaub at EthCC[8] | Smart Contract Security Before and After Deployment

Dedaub at ETHCC Dedaub is heading to Cannes! As a WAGMI sponsor at EthCC[8], we’re bringing end-to-end smart contract …

11 June 2025

Tech Deep Dive

The $11M Cork Protocol Hack: A Critical Lesson in Uniswap V4 Hook Security

On 28th of May 2025, Cork Protocol suffered an $11M exploit due multiple security weaknesses, culminating in a critical …

30 May 2025

Tech Deep Dive

The Cetus AMM $200M Hack: How a Flawed “Overflow” Check Led to Catastrophic Loss

On May 22, 2025, the Cetus AMM on the Sui Network suffered a devastating hack resulting in over $200 million in losses. …

23 May 2025

News

Dedaub at EthCC[8] | Smart Contract Security Before and After Deployment

Dedaub at ETHCC Dedaub is heading to Cannes! As a WAGMI sponsor at EthCC[8], we’re bringing …

11 June 2025

Tech Deep Dive

The $11M Cork Protocol Hack: A Critical Lesson in Uniswap V4 Hook Security

On 28th of May 2025, Cork Protocol suffered an $11M exploit due multiple security weaknesses, …

30 May 2025

Tech Deep Dive

The Cetus AMM $200M Hack: How a Flawed “Overflow” Check Led to Catastrophic Loss

On May 22, 2025, the Cetus AMM on the Sui Network suffered a devastating hack resulting in over $200 …

23 May 2025

VIEW ALL