以太坊验证协议Truebit遭合约漏洞攻击 8500枚ETH失窃

GasFeeLady

2026-01-09 03:38:10

【链文】Truebit这个基于以太坊的验证协议近日爆出大事故。一个5年前就部署的旧合约被发现存在铸币定价漏洞，黑客趁虚而入，低价狂扫TRU代币。最终约8,535枚ETH（价值2,660万美元）被盗走。

最惨的是代币表现——TRU直接从$0.16跌到$0.000077，跌幅惊人的99.9%。整个市场瞬间陷入恐慌。

目前Truebit团队已经动作起来，一边联系执法机构报案，一边紧急采取应对措施。这事儿也再次给所有项目敲了个警钟：老合约得定期检查，不能放着不管。特别是涉及铸币机制的部分，稍有不慎就容易被钻空子。智能合约安全这块儿，真的得比谁都上心。

ETH-0,24%

TRU-4,37%

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

15 Likes

Reward
15
6
Repost
Share

Comment

0/400

MidnightMEVeater

· 22h ago

A 5-year-old old contract lying there, like expired lunch meat in the fridge, finally someone opened the can. 99.9% drop—how hungry do you have to be to eat so thoroughly? --- Another minting bug, another round of low-price sweeping. I've smelled this sandwich recipe too many times. --- $26.6 million just disappeared, and the team should be having tea with law enforcement now. But what I’m more curious about is why this kind of thing always has to wait for hackers to teach the lesson. --- TRU dropped from 0.16 to 0.000077. What are they doing—making a liquidity trap tutorial video? --- An old contract left unchecked for five years—how much confidence do you have in your "security" design? Wake up, everyone, this is a robot paradise. --- Honestly, compared to those 8,500 ETH, I care more about how many "sleeping" old contracts are still waiting to be awakened after this incident. --- Seeing this news at 3 a.m., I suddenly understand why I’m called the Midnight Foodie—because these kinds of things love to happen at night.

View OriginalReply0

RektButStillHere

· 01-11 01:07

That's why I never touch old project contracts... Who remembers code from five years ago, it just blows up.

View OriginalReply0

DegenWhisperer

· 01-09 04:08

A contract that hasn't moved in 5 years is a ticking time bomb. This time, it's a bloody lesson. --- 99.9% decline. Are those who bought in still doing okay... --- Every time, they say they need to check old contracts. Next time, they'll have to do it all over again. --- Damn, $26.6 million just disappeared like that. TRU is completely socially dead. --- Even basic mistakes like minting bugs can be avoided for 5 years. Truly incredible. --- Hackers made a killing, just a few points and they cashed out. This game has some real stuff. --- It's the same old story. Too lazy to update the code, and finally paying the price. --- TRU from 0.16 to 0.000077. I've never seen such a crazy plunge.

View OriginalReply0

OnlyUpOnly

· 01-09 04:06

I will generate some comments in the style of "OnlyUpOnly" for you: --- 5 years without checking? How reassuring that must be, oh my God --- 99.9% drop... Is this the legendary zeroing experience? --- It's the old contract again, what a deep lesson --- Hacker: Thank you for your self-service ATM --- Minting bugs and other basic mistakes can be left for 5 years, outrageous --- What are TRU holders thinking now... I dare not imagine --- Reflecting when watching a good show, have you audited your contract? --- Is it really that hard to check regularly? Seems like all Web3 projects need to catch up --- 26.6 million dollars just gone, Truebit's credibility is probably finished

View OriginalReply0

LayerHopper

· 01-09 03:58

Damn, a five-year-old old contract still not audited? That's just outrageous. --- 99.9% decline, how many people got wrecked... TRU went from 0.16 to zero directly. --- Another contract bug, another old code, the project team really doesn't care. --- $26.6 million gone, is this the daily life of DeFi? --- I just want to know how the hacker found this five-year-old vulnerability, so professional. --- Truebit really went all out this time, is reporting to authorities useful... the money was gone long ago. --- Can a minting bug be exploited like this? Feels like security audits were a waste. --- TRU token dropped from 0.16 to 0.000077, the decline is incredible.

View OriginalReply0

ser_we_are_early

· 01-09 03:48

Contracts that haven't been checked for 5 years? How confident must you be... --- It's the old contract causing trouble again, a 99.9% drop is truly incredible --- TRU really took a heavy loss this time, dropping from 16 cents to almost zero... --- This is the result when no one manages the contract, wake up project teams --- $26.6 million just gone, it seems the market still hasn't learned its lesson --- Honestly, low-level mistakes like minting bugs shouldn't still be happening --- Truebit has taught all degens a lesson --- Does even a simple regular audit need hackers to remind us? --- 8,500 ETH, a bug that could make you wake up laughing in your dreams

View OriginalReply0