- Topic
21k Popularity
4k Popularity
23k Popularity
74k Popularity
22k Popularity
- Pin
- 🎉 The #CandyDrop Futures Challenge# is live — join now to share a 6 BTC prize pool!
📢 Post your futures trading experience on Gate Square with the event hashtag — $25 × 20 rewards are waiting!
🎁 $500 in futures trial vouchers up for grabs — 20 standout posts will win!
📅 Event Period: August 1, 2025, 15:00 – August 15, 2025, 19:00 (UTC+8)
👉 Event Link: https://www.gate.com/candy-drop/detail/BTC-98
Dare to trade. Dare to win. - 📢 Gate Square Exclusive: #WXTM Creative Contest# Is Now Live!
Celebrate CandyDrop Round 59 featuring MinoTari (WXTM) — compete for a 70,000 WXTM prize pool!
🎯 About MinoTari (WXTM)
Tari is a Rust-based blockchain protocol centered around digital assets.
It empowers creators to build new types of digital experiences and narratives.
With Tari, digitally scarce assets—like collectibles or in-game items—unlock new business opportunities for creators.
🎨 Event Period:
Aug 7, 2025, 09:00 – Aug 12, 2025, 16:00 (UTC)
📌 How to Participate:
Post original content on Gate Square related to WXTM or its - 🎉 Attention Alpha fans! Alpha’s latest TAG airdrop goes live today at 10 AM—first come, first served!
💰 Don’t forget to share your airdrop or points screenshot on Gate Square with the hashtag #ShowMyAlphaPoints# for a chance to win a share of the $200 token mystery box!
🥇 Top points winner: $100
✨ 5 outstanding posts: $20 each
📸 Pro tips:
Add a caption like “I earned ____ with Alpha. So worth it”
Share your points-earning tips or redemption experience for a better chance to win!
📅 Activity deadline: August 10, 18:00 UTC
Let’s go! See you tonight: https://www.gate.com/announcements/article - Hey fam—did you join yesterday’s [Show Your Alpha Points] event? Still not sure how to post your screenshot? No worries, here’s a super easy guide to help you win your share of the $200 mystery box prize!
📸 posting guide:
1️⃣ Open app and tap your [Avatar] on the homepage
2️⃣ Go to [Alpha Points] in the sidebar
3️⃣ You’ll see your latest points and airdrop status on this page!
👇 Step-by-step images attached—save it for later so you can post anytime!
🎁 Post your screenshot now with #ShowMyAlphaPoints# for a chance to win a share of $200 in prizes!
⚡ Airdrop reminder: Gate Alpha ES airdrop is - Gate Futures Trading Incentive Program is Live! Zero Barries to Share 50,000 ERA
Start trading and earn rewards — the more you trade, the more you earn!
New users enjoy a 20% bonus!
Join now:https://www.gate.com/campaigns/1692?pid=X&ch=NGhnNGTf
Event details: https://www.gate.com/announcements/article/46429
Transient storage vulnerability caused a loss of $300,000 for Ethereum margin trading projects.
A transient storage vulnerability leads to the theft of $300,000 worth of assets
On March 30, 2025, a leveraged trading project on the Ethereum chain was attacked, resulting in losses of over $300,000 in assets. The security team conducted an in-depth analysis of the incident, and the results are shared as follows:
Background
Solidity version 0.8.24 introduces transient storage features based on EIP-1153. This is a new data storage location designed to provide developers with a low-cost, temporary storage method that is effective during transactions. Transient storage is implemented through two new EVM instructions, TSTORE and TLOAD, and features low gas costs, persistence within transactions, and automatic cleanup.
Reason for the Attack
The fundamental reason for this incident is that the values stored in transient storage using tstore in the function were not cleared after the function call ended. The attacker exploited this characteristic to construct specific malicious addresses, bypassing permission checks to withdraw tokens.
Attack Steps
The attacker creates two malicious tokens A and B, and creates pools for these two tokens on a certain DEX and injects liquidity.
The attacker calls the initialize function of the Vault contract to create a leveraged trading market with A token as the collateral token and B token as the debt token.
The attacker calls the mint function of the Vault contract, depositing the debt token B to mint leveraged tokens. During this process, the DEX pool address and the minting amount are stored temporarily.
The attacker creates a malicious contract with an address that is the same as the value of the second transient storage.
The attacker transfers tokens by invoking the callback function of the Vault contract through a malicious contract. Because the transient storage values were not cleared, the identity check was incorrectly passed.
Finally, the attacker calls the callback function of the Vault contract through the attack on the contract (Token A) to transfer out other tokens (such as WBTC, WETH) for profit.
Capital Flow Analysis
The attacker stole approximately $300,000 in assets, including 17,814.8626 USDC, 1.4085 WBTC, and 119.871 WETH. WBTC was converted to 63.5596 WETH, and USDC was converted to 9.7122 WETH. Subsequently, a total of 193.1428 WETH was transferred to an anonymous platform. The attacker's initial funding came from 0.3 ETH transferred from that platform.
Summary
The core of this attack lies in the fact that the attacker exploited the characteristic of transient storage that remains unchanged throughout the transaction period, bypassing the permission verification of the callback function. It is recommended that the project team immediately use tstore(key, 0) to clear the values in transient storage right after the function call based on business logic. Additionally, it is important to strengthen contract code auditing and security testing to prevent similar situations from occurring.