@snomleon

In smart contracts, everything is determined by the order of actions. An error in a single line of code can turn a secure contract into an open safe. ▪️ Re-entrancy attack — a type of vulnerability in smart contracts where an attacker can repeatedly call a contract function before the previous action is completed. The contract makes an external call before updating the balance, and the attacker manages to resend the request, withdrawing funds several times until they are completely depleted. 📉 A classic example is the hack of The DAO in 2016. The DAO contract allowed users to withdraw their funds, but updated the balance after the transfer. The attacker took advantage of this to call the withdrawal function an infinite number of times until the contract was completely emptied. Unfortunately, as ordinary users, we cannot influence this in any way, so developers themselves must adhere to security principles to prevent such attacks. ➖ Such attacks are a reminder that even decentralization does not protect against human error. Without the right logic, smart contracts become more vulnerable than they seem.

0 reply

0 recast

0 reaction