<?xml version="1.0"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
	<id>https://quadrigainitiative.com/cryptocurrencyhackscamfraudwiki/index.php?action=history&amp;feed=atom&amp;title=Loopring_Official_Guardian_2FA_Vulnerability</id>
	<title>Loopring Official Guardian 2FA Vulnerability - Revision history</title>
	<link rel="self" type="application/atom+xml" href="https://quadrigainitiative.com/cryptocurrencyhackscamfraudwiki/index.php?action=history&amp;feed=atom&amp;title=Loopring_Official_Guardian_2FA_Vulnerability"/>
	<link rel="alternate" type="text/html" href="https://quadrigainitiative.com/cryptocurrencyhackscamfraudwiki/index.php?title=Loopring_Official_Guardian_2FA_Vulnerability&amp;action=history"/>
	<updated>2026-07-14T16:48:32Z</updated>
	<subtitle>Revision history for this page on the wiki</subtitle>
	<generator>MediaWiki 1.39.1</generator>
	<entry>
		<id>https://quadrigainitiative.com/cryptocurrencyhackscamfraudwiki/index.php?title=Loopring_Official_Guardian_2FA_Vulnerability&amp;diff=6053&amp;oldid=prev</id>
		<title>Azoundria: Created page with &quot;{{Imported Case Study With About|source=https://www.quadrigainitiative.com/casestudy/loopringofficialguardian2favulnerability.php}} {{Unattributed Sources}}  Loopring Logo/HomepageLoopring provides wallet software, which has a default setting of only a single official guardian. While the software provided daily notices requesting users to set up additional guardians, and multiple sources online including a post from Vitalik Buterin provided ad...&quot;</title>
		<link rel="alternate" type="text/html" href="https://quadrigainitiative.com/cryptocurrencyhackscamfraudwiki/index.php?title=Loopring_Official_Guardian_2FA_Vulnerability&amp;diff=6053&amp;oldid=prev"/>
		<updated>2024-09-18T19:40:00Z</updated>

		<summary type="html">&lt;p&gt;Created page with &amp;quot;{{Imported Case Study With About|source=https://www.quadrigainitiative.com/casestudy/loopringofficialguardian2favulnerability.php}} {{Unattributed Sources}}  &lt;a href=&quot;/cryptocurrencyhackscamfraudwiki/index.php?title=File:Loopring.jpg&quot; title=&quot;File:Loopring.jpg&quot;&gt;thumb|Loopring Logo/Homepage&lt;/a&gt;Loopring provides wallet software, which has a default setting of only a single official guardian. While the software provided daily notices requesting users to set up additional guardians, and multiple sources online including a post from Vitalik Buterin provided ad...&amp;quot;&lt;/p&gt;
&lt;p&gt;&lt;b&gt;New page&lt;/b&gt;&lt;/p&gt;&lt;div&gt;{{Imported Case Study With About|source=https://www.quadrigainitiative.com/casestudy/loopringofficialguardian2favulnerability.php}}&lt;br /&gt;
{{Unattributed Sources}}&lt;br /&gt;
&lt;br /&gt;
[[File:Loopring.jpg|thumb|Loopring Logo/Homepage]]Loopring provides wallet software, which has a default setting of only a single official guardian. While the software provided daily notices requesting users to set up additional guardians, and multiple sources online including a post from Vitalik Buterin provided additional guidance on doing so, many users chose not to and remained with the default security setup. On June 8th, a malicious actor found a way to bypass the two-factor authentication which Loopring provided through their official guardian. This allowed them to access many wallets of Loopring users, which they subsequently drained. Loopring has postponed an upgrade to their smart contract and is reportedly working with law enforcement, centralized exchanges, and different security experts to recover lost funds.&amp;lt;ref name=&amp;quot;slowmisthackedarchive-14322&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;loopringorgtwitter-14364&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;etherscan-14365&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;etherscan-14366&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;etherscan-14367&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;etherscan-14368&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;etherscan-14369&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;loopringorgtwitter-14370&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;redditold-14371&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;loopringorgtwitter-14372&amp;quot; /&amp;gt;&amp;lt;ref name=&amp;quot;loopringorgtwitter-14373&amp;quot; /&amp;gt;&lt;br /&gt;
&lt;br /&gt;
== About Loopring ==&lt;br /&gt;
&amp;quot;Loopring is a software running on Ethereum that aims to incentivize a global network of users to operate a platform that enables the creation of new types of crypto asset exchanges.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
High transaction fees are &amp;quot;exactly what Loopring aims to remedy, by delivering a digital economy that empowers its users while still giving them complete control over their assets. With Loopring, people no longer have to sacrifice efficiency and affordability to take advantage of Ethereum’s network security.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
&amp;quot;Loopring (LRC) is an Ethereum Layer-2 scaling protocol that enables the building of decentralized exchanges which rival centralized exchanges in terms of performance. The network can handle up to 1,000 times more trades per second than Ethereum with each one costing a mere fraction of a cent.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
&amp;quot;Loopring's zkRollup L2 solution offers the same security guarantees as Ethereum mainnet, with a big scalability boost: throughput increased by 1000x, and cost reduced to just 0.1% of L1. Ethereum is now unleashed. One year ago, we launched the first zkRollup on Ethereum - now we put its power in your pocket. Smooth orderbook trading, AMMs, and global payments, right from the Loopring wallet.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
&amp;quot;Most notably, Loopring claims its platform will allow exchanges built on top of it to sidestep the slow speeds and high costs associated with decentralized exchanges on Ethereum through the use of a newer type of cryptography called zero-knowledge rollups, or zkRollups.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
== The Reality ==&lt;br /&gt;
&amp;quot;This is exactly why the app asks you to setup multiple guardians and even notifies you to do so if you haven't every time you log in, that's alot of people who ignored the warnings daily and this unfortunate event happened.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
== What Happened ==&lt;br /&gt;
&amp;quot;Loopring Smart Wallets were targeted in a security breach. The attack exploited wallets with&amp;quot; the Loopring Official Guardian as their only guardian.&lt;br /&gt;
{| class=&amp;quot;wikitable&amp;quot;&lt;br /&gt;
|+Key Event Timeline - Loopring Official Guardian 2FA Vulnerability&lt;br /&gt;
!Date&lt;br /&gt;
!Event&lt;br /&gt;
!Description&lt;br /&gt;
|-&lt;br /&gt;
|June 8th, 2024 11:41:23 AM MDT&lt;br /&gt;
|First Malicious Withdrawal&lt;br /&gt;
|This transaction represents the most likely earliest malicious withdrawal on one of the reported theft wallets.&lt;br /&gt;
|-&lt;br /&gt;
|June 9th, 2024 7:13:00 AM MDT&lt;br /&gt;
|Loopring Twitter Announcement&lt;br /&gt;
|Loopring announces the events on Twitter. According to their announcement, they have &amp;quot;temporarily suspended Guardian-related and 2FA-related operations&amp;quot;.&lt;br /&gt;
|-&lt;br /&gt;
|June 10th, 2024 6:21:00 AM MDT&lt;br /&gt;
|Contact Address Provided&lt;br /&gt;
|Loopring provides a contact address, and notes that they are actively working with centralized exchanges, security experts, and law enforcement on fund recovery.&lt;br /&gt;
|-&lt;br /&gt;
|June 12th, 2024 5:05:00 AM MDT&lt;br /&gt;
|Launch Postponed&lt;br /&gt;
|Loopring announces that their smart contract upgrade is being postponed due to the breach. They will announce the date in the future.&lt;br /&gt;
|-&lt;br /&gt;
|June 13th, 2024 8:59:00 AM MDT&lt;br /&gt;
|Loopring Guardian Guide&lt;br /&gt;
|Loopring publishes a tweet referencing a post by Vitalik on proper guardian setup for Loopring wallets. This recommends at least 3 guardians and that they shouldn't know each other.&lt;br /&gt;
|}&lt;br /&gt;
&lt;br /&gt;
== Technical Details ==&lt;br /&gt;
SlowMist estimates $5m.&lt;br /&gt;
&lt;br /&gt;
== Total Amount Lost ==&lt;br /&gt;
The total amount lost has been estimated at $5,000,000 USD.&lt;br /&gt;
&lt;br /&gt;
How much was lost and how was it calculated? If there are conflicting reports, which are accurate and where does the discrepancy lie?&lt;br /&gt;
&lt;br /&gt;
== Immediate Reactions ==&lt;br /&gt;
&amp;quot;Ethereum Layer 2 protocol Loopring posted on Twitter that the some Loopring Smart Wallets were targeted in a security breach. The attack exploited wallets with only one Guardian, specifically the Loopring Official Guardian. The hacker initiated a Recovery process, falsely posing as the wallet owner to reset ownership and withdraw assets. The attack succeeded by compromising Loopring's 2FA service, allowing the hacker to impersonate the wallet owner and gain approval for the Recovery from the Official Guardian. Subsequently, the attacker transferred assets out of the affected wallets.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
&amp;quot;A few hours ago, some Loopring Smart Wallets were targeted in a security breach. The attack exploited wallets with only one Guardian, specifically the Loopring Official Guardian. The hacker initiated a Recovery process, falsely posing as the wallet owner to reset ownership and withdraw assets.&lt;br /&gt;
&lt;br /&gt;
The attack succeeded by compromising Loopring's 2FA service, allowing the hacker to impersonate the wallet owner and gain approval for the Recovery from the Official Guardian. Subsequently, the attacker transferred assets out of the affected wallets.&lt;br /&gt;
&lt;br /&gt;
We are actively collaborating with Mist security experts to determine how our 2FA service was compromised. To protect our users, we have temporarily suspended Guardian-related and 2FA-related operations. Following this action, the compromise has ceased.&lt;br /&gt;
&lt;br /&gt;
Loopring is working with law enforcement and professional security teams to track down the perpetrator. We will continue to provide updates as soon as the investigation progresses.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
== Ultimate Outcome ==&lt;br /&gt;
&amp;quot;Due to a recent security breach involving Loopring's two-factor authentication (2FA) service, the pre-scheduled smart contract auto-upgrade on the Ethereum mainnet, originally set for June 12th, has been postponed. We will proceed with the upgrade at a later date and will announce this date ahead of time.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
&amp;quot;If you've experienced asset loss during the Loopring Smart Wallet compromise event - please contact us at foundation at loopring dot org &lt;br /&gt;
&lt;br /&gt;
We are actively collaborating with security experts, centralized exchanges (CEX), and law enforcement to recover the lost funds. Any progress will be communicated through our official channels immediately.  &lt;br /&gt;
&lt;br /&gt;
Also - be aware and watch out for impersonators and scammers in the replies who are trying to capitalize off this event.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
== Total Amount Recovered ==&lt;br /&gt;
&amp;quot;If you've experienced asset loss during the Loopring Smart Wallet compromise event - please contact us at foundation at loopring dot org &lt;br /&gt;
&lt;br /&gt;
We are actively collaborating with security experts, centralized exchanges (CEX), and law enforcement to recover the lost funds. Any progress will be communicated through our official channels immediately.&amp;quot;&lt;br /&gt;
&lt;br /&gt;
There do not appear to have been any funds recovered in this case.&lt;br /&gt;
&lt;br /&gt;
== Ongoing Developments ==&lt;br /&gt;
What parts of this case are still remaining to be concluded?&lt;br /&gt;
== Individual Prevention Policies ==&lt;br /&gt;
{{Prevention:Individuals:Placeholder}}&lt;br /&gt;
&lt;br /&gt;
{{Prevention:Individuals:End}}&lt;br /&gt;
&lt;br /&gt;
== Platform Prevention Policies ==&lt;br /&gt;
{{Prevention:Platforms:Placeholder}}&lt;br /&gt;
&lt;br /&gt;
{{Prevention:Platforms:End}}&lt;br /&gt;
&lt;br /&gt;
== Regulatory Prevention Policies ==&lt;br /&gt;
{{Prevention:Regulators:Placeholder}}&lt;br /&gt;
&lt;br /&gt;
{{Prevention:Regulators:End}}&lt;br /&gt;
&lt;br /&gt;
== References ==&lt;br /&gt;
&amp;lt;references&amp;gt;&amp;lt;ref name=&amp;quot;slowmisthackedarchive-14322&amp;quot;&amp;gt;[https://web.archive.org/web/20240610222253/https://hacked.slowmist.io/ SlowMist Hacked - SlowMist Zone] (Accessed Jun 18, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;loopringorgtwitter-14364&amp;quot;&amp;gt;[https://twitter.com/loopringorg/status/1799791898296451515 @loopringorg Twitter] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;etherscan-14365&amp;quot;&amp;gt;[https://etherscan.io/address/0x44f887cfbd667cb2042dd55ab1d8951c94bb0102 Address 0x44f887cfbd667cb2042dd55ab1d8951c94bb0102 | Etherscan] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;etherscan-14366&amp;quot;&amp;gt;[https://etherscan.io/tokentxns?a=0x44f887cfbd667cb2042dd55ab1d8951c94bb0102 Token Transfer | Etherscan] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;etherscan-14367&amp;quot;&amp;gt;[https://etherscan.io/tx/0xf0a02e3dc32e380f5fbc832981963277f7b2ce9345040ddf1f3016724b84e251 Ethereum Transaction Hash (Txhash) Details | Etherscan] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;etherscan-14368&amp;quot;&amp;gt;[https://etherscan.io/address/0xbacef3a142e39f14f4f15e22e9248ee4141af18f Address 0xbacef3a142e39f14f4f15e22e9248ee4141af18f | Etherscan] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;etherscan-14369&amp;quot;&amp;gt;[https://etherscan.io/txs?a=0xbacef3a142e39f14f4f15e22e9248ee4141af18f Ethereum Transactions Information | Etherscan] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;loopringorgtwitter-14370&amp;quot;&amp;gt;[https://twitter.com/loopringorg/status/1801268180364530172 @loopringorg Twitter] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;redditold-14371&amp;quot;&amp;gt;[https://old.reddit.com/r/ethereum/comments/11tijiv/how_i_think_about_choosing_guardians_for_multisig/ https://old.reddit.com/r/ethereum/comments/11tijiv/how_i_think_about_choosing_guardians_for_multisig/] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;loopringorgtwitter-14372&amp;quot;&amp;gt;[https://twitter.com/loopringorg/status/1800846819666108482 @loopringorg Twitter] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&lt;br /&gt;
&lt;br /&gt;
&amp;lt;ref name=&amp;quot;loopringorgtwitter-14373&amp;quot;&amp;gt;[https://twitter.com/loopringorg/status/1800141336470810660 @loopringorg Twitter] (Accessed Jun 19, 2024)&amp;lt;/ref&amp;gt;&amp;lt;/references&amp;gt;&lt;/div&gt;</summary>
		<author><name>Azoundria</name></author>
	</entry>
</feed>