HyperJump has explained what steps they are taking to reduce potential attack vectors on their platform.
HyperJumps Stance on Flash Loans
HyperJump, the DeFi protocol on Binance Smart Chain (BSC) and Fantom which incorporates a dual token ecosystem with NFTs and gaming under one roof, has announced a series of measures it has taken to help protect itself and its community from the spectre of flash loan exploits. An in-depth medium post by has detailed the risks and everything the team has done to mitigate flash loans.
Flash loans have become the scourge of BSC in recent months with a number of protocols including Belt Finance, JulSwap and PancakeBunny falling victim to these attacks. The ongoing proliferation of these exploits even encouraged PancakeSwap to detail some strategies on how DeFi platforms could minimize their risk profiles.
Flash Loan Exploits
As bsc.news previously reported, flash loans are a perfectly legitimate financial tool which was first proposed by Marble Capital in 2018. A flash loan is a situation in which a loan is taken and repaid within a single blockchain transaction, effectively giving it a time duration of zero. Due to the negligible time in which a flash loan is seen to be ‘active’ a large amount of capital can be borrowed for very little cost. A flash loan allows anyone to successfully profit from arbitrage opportunities – exploiting the cost differences of the same asset across platforms.
According to HyperJump, 90% of flash loan exploits use one of two methods. Oracle exploits and reentrancy exploits.
The protocol explains their prevention method for the first type of exploit thusly, “Hyperswap utilizes code in our own contracts to update the reserves on every mint/burn/swap call. The AMM is its own price oracle, which updates the reserve before leaving the function, averaging the prices, and making a Price Oracle Exploit unprofitable.”
For the reentrancy exploit HyperJump explains the prevention strategy as, “Using a modifier blockRentrancy: the idea is to lock the contract while any function of the contract is being executed, so only a single function in the contract can be executed at a time.”
In both cases a modification to the code has been made to make the platform more secure, but HyperJump concedes, “We can’t claim to be 100% unexploitable, no one can, and this is certainly not an exhaustive list of ways that an exploit can occur.”
During a period in which flash loan exploits have been a growing problem for protocols on Binance Smart Chain, the attention to which HyperJump are dedicating to securing their protocol from these attacks is welcome. For safety conscious DeFi users, HyperJump has made an appealing proposition.
Source : bsc.news
Founded in 2020, BSCNews is the leading media platform covering decentralized finance (DeFi) on the Binance Smart Chain (BSC). We cover a wide range of blockchain news revolving mainly around the DeFi sector of the crypto markets. BSCNews aims to inform, educate and share information with the global investment community through our website, social media, newsletters, podcasts, research, and live ask me anything (AMA). Our content reaches hundreds of thousands of global investors who are active in the BSC DeFi space.