本次攻击的实际损失已几乎与其当前市值几近持平。

作者：ChandlerZ，Foresight News4 月 15 日，永续合约 DEX KiloEx 宣布其金库遭遇攻击，目前已控制住事态。KiloEx 平台功能已暂停，团队正与安全伙伴合作追踪资金流向，并计划推出悬赏计划。KiloEx 正在分析攻击路径和受影响资产，同时联合生态伙伴尝试追回资金。完整报告将在近日发布。链上数据显示，KiloEx 地址被盗损失约 740 万美元，其中 330 万美元在 Base 网络，310 万美元在 opBNB 网络，以及 100 万美元在 BNB Chain。行情显示，KILO 24 小时跌幅超 33%，价格最低触及 0.033 USDT，现报 0.0346 USDT。<img src="https://static.fwimg.io/img/feed/c245f1c7e47aeaf481448e4e34eb5ae3.jpg">根据 Cyvers Alerts 监测，本次黑客攻击的根本原因可能是价格预言机的访问控制漏洞。<img src="https://static.fwimg.io/img/feed/6c5c2725c43995a847775c95d216743e.jpg">简单来讲，预言机本应由受信任的角色更新价格信息，但由于缺乏必要的权限限制，攻击者得以绕过验证机制，任意篡改资产价格，从而操控合约逻辑。派盾对其中一笔攻击交易的初步分析显示，这是一起价格预言机问题。攻击者利用该漏洞，在开仓时将 ETHUSD 初始价格设为 100，随后立刻以虚高的 ETHUSD 价格 10000 平仓，仅这一笔交易便获利约 312 万美元。<h3>KiloEx 是什么？</h3>KiloEx 是一个去中心化永续 DEX，专注于风险管理，资金效率优化以及 LST 代币的生态整合。KiloEx 参与了 BNB Chain 近期推出的空投联盟活动，以及 Manta Pacific 上的 Renew Paradigm 活动，通过质押 STONE 来获取稳定币收益。此外，KiloEx 还计划推出混合金库和混合保证金交易功能。KiloEX 本身是类似于 GMX 的基于预言机定价的 Perp DEX，其核心创新点在于:<ul><li>自带对冲的稳定币中性 LP</li><li>跟单交易 Copy Trading</li><li>代币经济方面借鉴了当今的先进机制</li></ul>在融资方面，KiloEx 获得了 Binance Labs 的投资，并在其 MVB 第六季中被孵化。除此之外还获得了 Foresight Ventures、Crescendo Ventures、Manta Network、7UP DAO、Poolz Finance、GTS Ventures 以及部分天使投资人的投资。KiloEx 在 3 月 27 日于币安钱包完成独家 TGE，吸引超过 7 万名用户参与打新，认购额超募 300 倍。<img src="https://static.fwimg.io/img/feed/6f37fe1557445dd318b285ac7d8a49ef.jpg">据其官网数据，KiloEx 总交易量为 37.64 亿美元，当前 TVL 为 3384 万美元。而据 DefiLlama 数据显示，KiloEx 日平均交易量约为 1 亿美元，7 日交易量约 5 亿美元。<h3>安全事故暴露的信任危机与社区质疑</h3>尽管项目方第一时间暂停了平台功能并联合安全机构追踪资金流向，但本次攻击的实际损失已几乎与其当前市值 730 万美元几近持平，而其完全稀释估值亦不过 3449 万美元左右。在如此体量的项目中出现大额资金被盗，无疑对用户信心造成了沉重打击。更令人忧虑的是，截至目前，KiloEx 团队并未发布任何有关用户赔付机制、追偿计划或团队资金应对方案的细节声明，使得「黑客攻击」与「项目方是否承担责任」之间的界限日益模糊。在社交平台上，大量社区成员表达了强烈不满，认为 KiloEx 在关键时刻对用户利益保障缺乏清晰承诺。部分用户在社交平台上指责项目方「熊市跑路」「高调募资低调善后」等等，并担忧平台治理与财务透明度问题。市场情绪的迅速转变，也导致 KILO 代币短期内大幅下跌超三成。KiloEx 的事故，虽然仍处于事件处置初期阶段，但已显露出新一轮去中心化协议「可持续性考验」的核心矛盾：安全不是项目上线后的事后响应，而是架构初期的责任设定。尤其是 KiloEx 曾获 Binance Labs 孵化并参与空投联盟活动，其核心用户群与平台间的信任基础建立在「官方背书」的感知之上。若项目方无法拿出明确的责任方案，无论资金是否追回，市场对其「安全与可控」的信心都将受到根本性削弱，甚至可能波及其生态协作网络的声誉。<h3>安全事件频发下的结构性挑战：不仅是 KiloEx 的问题</h3>与此同时，Web3 领域近期频繁曝出与安全相关的负面事件，进一步加剧了行业信任危机。就在 KiloEx 遭黑之后不久，Odin.fun 联合创始人 Bob Bodily 也于昨日发推称其账户疑似遭黑客入侵，事件仍在处理中。此前有用户反映其关联账户资产被清空，疑似被盗。黑客攻击从项目合约延伸至创始人个人资产，也表明当前攻击者已不再局限于技术层面漏洞，而是通过多维度的权限、社交工程乃至运营漏洞展开系统性攻击，这对项目方提出了更高层级的安全治理要求。尤其值得警惕的是，当前一些中小型 DEX 在设计上采用链上预言机进行定价，但在访问控制、权限验证及异常行为预警方面，仍存在明显短板。从整个 Web3 行业角度来看，无赔付机制、权限配置失衡、代币治理权力真空等问题，正逐渐成为社区新一代投资评估逻辑中的红线指标。过去市场往往更关注产品设计与代币回报模型，但随着安全事件频发与监管尺度收紧，项目能否建立「事前防护 + 事中冻结 + 事后赔付」的全链条机制，将成为用户与资本是否继续支持的核心变量。

KiloEx 被盗 750 万美元：市值都不够赔，去中心化信任危机再爆发？

The actual losses from this attack are almost equivalent to its current market value.

Author: ChandlerZ, Foresight NewsOn April 15, the perpetual contract DEX KiloEx announced that its vault was attacked, and the situation is currently under control. The KiloEx platform functions have been suspended, and the team is working with security partners to track fund flows and plans to launch a bounty program. KiloEx is analyzing the attack path and affected assets while collaborating with ecosystem partners to attempt to recover funds. A comprehensive report will be released in the coming days.On-chain data shows that the KiloEx address was stolen, with losses of approximately $7.4 million, including $3.3 million on the Base network, $3.1 million on the opBNB network, and $1 million on the BNB Chain.Market data shows that KILO has dropped over 33% in 24 hours, with the lowest price reaching 0.033 USDT, currently trading at 0.0346 USDT.<img src="https://static.fwimg.io/img/feed/c245f1c7e47aeaf481448e4e34eb5ae3.jpg">According to Cyvers Alerts, the root cause of this hack may be an access control vulnerability in the price oracle.<img src="https://static.fwimg.io/img/feed/6c5c2725c43995a847775c95d216743e.jpg">Simply put, the oracle should have price information updated by trusted roles, but due to a lack of necessary permission restrictions, attackers were able to bypass the verification mechanism and arbitrarily manipulate asset prices, thus controlling contract logic.Paidun's preliminary analysis of one of the attack transactions shows that this was an oracle pricing issue. The attacker exploited this vulnerability by setting the initial ETHUSD price to 100 when opening a position, then immediately closing the position at an artificially high ETHUSD price of 10000, earning approximately $3.12 million from this single transaction.<h3>What is KiloEx?</h3>KiloEx is a decentralized perpetual DEX focused on risk management, capital efficiency optimization, and LST token ecosystem integration. KiloEx participated in the recent airdrop alliance activity on BNB Chain and the Renew Paradigm activity on Manta Pacific, earning stablecoin yields by staking STONE. Additionally, KiloEx plans to launch hybrid vault and hybrid margin trading functions.KiloEX is similar to GMX, an oracle-priced Perp DEX, with core innovations including:<ul><li>Self-hedging stablecoin-neutral LP</li><li>Copy Trading</li><li>Token economics borrowing from advanced current mechanisms</li></ul>In terms of financing, KiloEx has received investment from Binance Labs and was incubated in its MVB sixth season. It has also received investments from Foresight Ventures, Crescendo Ventures, Manta Network, 7UP DAO, Poolz Finance, GTS Ventures, and some angel investors.KiloEx completed an exclusive TGE on Binance Wallet on March 27, attracting over 70,000 users to participate, with subscription amounts exceeding 300 times the target.<img src="https://static.fwimg.io/img/feed/6f37fe1557445dd318b285ac7d8a49ef.jpg">According to its official website, KiloEx's total trading volume is $3.764 billion, with a current TVL of $33.84 million. According to defillama data, KiloEx's daily average trading volume is around $100 million, with a 7-day trading volume of around $500 million.<h3>Trust Crisis and Community Doubts Exposed by the Security Incident</h3>[Rest of the text continues in the same professional translation style]

KiloEx was stolen for $7.5 million: the market value is not enough to compensate, will the decentralized trust crisis break out again?

On May 9, 2025, the cryptocurrency market witnessed a historic moment - <BTC> market capitalization exceeded $2.054 trillion, ranking as the fifth-largest asset globally. On that day, <BTC> price briefly surpassed $104,000, currently trading at $102,972, with a 24-hour increase of 6%, rising approximately 40% from its early April low point. Since <BTC> briefly broke through $102,000 on February 4, the price has experienced a three-month oscillation around the $100,000 mark. Just this morning, <BTC> finally broke through $101,000, with a 24-hour increase of 4%,...

The bull market is coming back quickly: Bitcoin is about to hit a new high, and crypto assets are surging across the board!

Since February 4th, when Bitcoin briefly broke through $10,200, it has experienced a three-month-long oscillating struggle, with the price unable to effectively stabilize above $100,000. Just now, the market finally witnessed a critical breakthrough, with Bitcoin surpassing $10,100, showing a 24-hour increase of 4%.
[Will Bitcoin return to $100,000 in 90 days, and is the bull market coming?]
In the first half of 2025, the crypto market has been through numerous twists and turns, with Bitcoin's market share continuously rising to a historic high. The Trump administration has simultaneously released regulatory benefits while disrupting tariff order and market manipulation...

Bitcoin returns to $100,000 after 90 days. Is the bull market coming?

In the past 24 hours, Ethereum finally broke its usual pattern, and after the recent Pectra upgrade, it directly brought a 22% increase along with the warming trend, now standing above $2,200 again. Alongside this, Virtual, EIGEN, SUI, and other Altcoins have seen around 50% gains within 24 hours.

Compared to other Altcoins' 22% increase, it might seem insignificant, but the last time Ethereum rose more than 22% within 24 hours was on May 23, 2024, when ETH's price was from...