Bonzo Lend Incident Review: How Did a Zero-Signature Vulnerability Cause the Protocol to Lose $9.05 Million?

marsbit2026-07-14 tarihinde yayınlandı2026-07-14 tarihinde güncellendi

Özet

The lending protocol Bonzo Lend on Hedera was exploited for $9.05 million due to a zero-signature vulnerability in an oracle verifier. An attacker deposited $250 worth of SAUCE tokens and submitted a manipulated price feed with a zero-valued signature and public key point. The oracle verifier, operated by Supra, incorrectly accepted this invalid cryptographic proof as legitimate because the pairing equation mathematically evaluated to true for these zero/identity inputs. This allowed the attacker to artificially inflate the collateral's value by roughly 12 orders of magnitude and borrow $6.63 million in USDC and 34.5 million wrapped HBAR. A second wallet borrowed ~$1 million during the incident but has since contacted Bonzo, identifying as a whitehat with intent to return funds. Bonzo has paused all operations and withdrawals. Supra has reportedly patched the verifier flaw. The protocol remains in maintenance mode while determining recovery plans, compensation, and withdrawal terms for liquidity providers.

Author:CryptoSlate

Translation:Deep Tide TechFlow

Deep Tide Insights: A collateral worth a few dollars in an altcoin successfully borrowed $9.05 million through a zero-signature vulnerability in the oracle verifier. This incident exposes an overlooked blind spot in mathematical validation within DeFi infrastructure: when verifiers mistake a mathematical identity for an authorization proof, the protocol's designed loan-to-value ratio rules inadvertently become an accomplice.

The lending protocol Bonzo Lend, based on Hedera, has locked withdrawal functionality after an oracle verifier accepted a proof containing a zero signature and public key, allowing a wallet to borrow $9.05 million using 250 SAUCE tokens as collateral.

As of July 13, Bonzo Lend and Bonzo Points remain paused. The protocol's official status page indicates that Bonzo Lend and all affected asset markets are under maintenance.

Liquidity providers remain unable to withdraw funds while Bonzo Finance Labs and Bonzo Finance Foundation determine a recovery path and conditions for reopening.

Wallet A initially deposited 250 SAUCE tokens, valued at just a few dollars. At 00:51 UTC, it submitted a SAUCE/wHBAR price update, inflating the token's value by approximately 12 orders of magnitude, despite the market price remaining around 0.2 HBAR.

Eight seconds after the manipulated price reached the oracle's on-chain storage, the wallet borrowed 6.63 million USDC.

It then proceeded to borrow 34.5 million wrapped HBAR, bringing the total principal extracted by Wallet A to approximately $9.05 million according to Bonzo's reference price.

How Zero Values Passed the Verifier

The submitted update did not contain a valid oracle signature. Its signature field was [0,0], and the referenced committee public key was also the point at zero, known in cryptography as the point at infinity.

Supra's verifier sent these inputs to Hedera's pairing precompile contract. Since both points represent the mathematical identity, the pairing equation, by design, returned true.

The verifier then misinterpreted this result as proof of a committee signature because it did not first reject zero-value, identity, and non-subgroup inputs.

In simpler terms, the network correctly solved the equation it received, and the verifier mistook that answer for authorization.

Bonzo stated that its lending contract then executed according to its programmed loan-to-value ratio rules, using the price stored by the oracle.

Another wallet, Wallet B, borrowed approximately $1 million while the anomalous price was still active. This wallet contacted Bonzo, identifying itself as a white-hat responder and stating its intention to return the funds.

Bonzo reports that approximately $1 million has been recovered, although the funds have not yet been returned, and the final amount remains undetermined.

Bonzo reported that Supra has fixed the verifier, but the lending pools remain closed.

Remaining questions include whether regression testing confirms the verifier rejects identity inputs, whether Bonzo will add price deviation checks or tighten collateral parameters, and how available assets will be handled when withdrawals resume.

As of July 13, Bonzo's official status page continues to list the incident as unresolved. Its latest formal update, dated July 11, stated the protocol remains paused.

Bonzo has not yet announced compensation, a reopening date, or withdrawal terms for users, leaving liquidity providers dependent on the forthcoming recovery plan.

İlgili Sorular

QWhat was the exploit that led to the $9.05 million loss on the Bonzo Lend protocol?

AThe exploit was a zero-signature vulnerability in the oracle's verifier. An attacker submitted a price update with a signature field of [0,0] and a public key set to the point at infinity (a mathematical identity). The verifier incorrectly accepted this as valid proof of committee authorization, allowing the attacker to manipulate the price of a low-value token and borrow $9.05 million against it.

QHow did the zero-signature input technically pass the oracle verifier's check?

AThe verifier sent the inputs to a cryptographic pairing function. Since both the signature and public key points were the mathematical identity (zero/point at infinity), the pairing equation correctly returned 'true'. The verifier's flaw was treating this mathematically correct result as proof of a valid signature, without first rejecting identity inputs.

QWhat were the specific steps the attacker (Wallet A) took to execute the exploit?

AWallet A first deposited 250 SAUCE tokens (worth a few dollars). It then submitted a falsified SAUCE/wHBAR price update, inflating the token's value by about 12 orders of magnitude. After this manipulated price was stored by the oracle, the wallet borrowed 6.63 million USDC and 34.5 million wrapped HBAR, totaling approximately $9.05 million at the protocol's manipulated reference price.

QWhat was the role of the 'white-hat respondent' (Wallet B) mentioned in the incident?

AA second wallet (Wallet B) borrowed approximately $1 million while the manipulated price was still active. This wallet contacted Bonzo Lend, identified itself as a white-hat responder, and stated its intention to return the borrowed funds. Approximately $1 million is accounted for as potentially recoverable, though the funds had not been returned at the time of reporting.

QWhat was the status of the Bonzo Lend protocol following the exploit?

AFollowing the exploit, Bonzo Lend locked withdrawals and paused all protocol functions. The official status page listed the protocol as under maintenance. While the oracle provider, Supra, reportedly fixed the verifier, Bonzo Lend's lending pools remained closed. The protocol had not announced a recovery plan, compensation, a reopening date, or terms for user withdrawals, leaving liquidity providers in limbo.

İlgili Okumalar

Wall Street Morning Report: U.S. Stocks Suffer Collective Setback, Apple Hits New High Against the Trend, Tonight's CPI and Waller's Hearing to Determine Interest Rate Path

Wall Street Morning Report: U.S. stocks fell collectively, while Apple hit a new record high. Key events including tonight's CPI data and Fed Chair Walsh's testimony will set the direction for interest rates. Markets experienced a sharp "risk-off" move due to escalating Middle East tensions and unexpected hawkish signals from the Federal Reserve. Major indices declined, with the Nasdaq Composite leading losses, down 1.55%. The VIX fear index surged over 14%. Geopolitical tensions spiked as the U.S. conducted consecutive airstrikes on Iran and announced a maritime blockade of Iranian ports, set to begin on July 15. This triggered a panic-driven rally in oil, with WTI crude soaring over 9% to breach $80 per barrel. Safe-haven flows bolstered the U.S. dollar and Treasury yields, while gold plunged nearly 3%, losing its $4,000 level. Rate markets now price a nearly 50% chance of a Fed rate hike in July, up significantly from prior expectations, following hawkish commentary from Fed Governor Waller. The tech sector, particularly AI-related stocks, faced intense selling pressure. The Philadelphia Semiconductor Index plunged 4%. Notable decliners included SK Hynix (down 9% on its second trading day as an ADR), Nvidia, AMD, and Intel. In contrast, Apple shares rose 0.63% to a record high, viewed as a stable haven away from the costly AI data center arms race. Key events to watch include the U.S. June CPI inflation data and Fed Chair Walsh's Congressional testimony tonight, which will critically influence the Fed's policy path. Major bank earnings also begin today. The formal implementation of the U.S. maritime blockade against Iran on July 15 and upcoming events like TSMC's Q2 earnings and a SpaceX Starship test flight remain in focus.

marsbit5 dk önce

Wall Street Morning Report: U.S. Stocks Suffer Collective Setback, Apple Hits New High Against the Trend, Tonight's CPI and Waller's Hearing to Determine Interest Rate Path

marsbit5 dk önce

Crude Oil Surges 10% in Intraday Trading! US Military Restores Blockade on Iran, Trump Warns of 'Heavy Blows' Tonight and Tomorrow, Imposes 20% Fee on Strait Shipping

Crude oil prices surged up to 10% intraday as tensions between the US and Iran escalated sharply. President Trump announced the reinstatement of a maritime blockade against Iran, targeting its ships and their customers, while stating the Strait of Hormuz would remain open to all other nations. He further declared that the US, as the "guardian" of the strait, would impose a 20% fee on all cargo transiting the strategic waterway to compensate for security costs. The US Central Command confirmed the naval blockade would commence on July 14 (GMT). Following Trump's statements, reports emerged of explosions near Iran's Larak Island and the port of Bandar Abbas, though Iranian authorities did not confirm their nature. Iran's Foreign Minister criticized the proposed 20% fee as excessive, asserting Iran's role as the guardian of the strait. An Iranian military spokesperson warned of a strong response to any unauthorized US interference in the waterway. The United Nations' International Maritime Organization (IMO) expressed opposition to charging tolls for passage through international straits, stating such measures lack legal foundation. Market reactions were pronounced, with Brent crude briefly surpassing $83 and WTI above $78. The situation intensified as Trump notified Congress of renewed hostilities with Iran, following US airstrikes on Iranian targets.

marsbit9 dk önce

Crude Oil Surges 10% in Intraday Trading! US Military Restores Blockade on Iran, Trump Warns of 'Heavy Blows' Tonight and Tomorrow, Imposes 20% Fee on Strait Shipping

marsbit9 dk önce

How to Regulate Single-Stock Leveraged ETFs? On Thursday, the Entire Market Is Watching This Korean Government Meeting

The highest-level economic coordination body in South Korea, the "F4" comprising the Ministry of Economy and Finance, the Financial Services Commission, the Bank of Korea, and the Financial Supervisory Service, will hold an emergency meeting on Thursday to discuss regulatory measures for single-stock leveraged ETFs. These products, launched just six weeks ago, have been widely blamed for exacerbating market volatility. The KOSPI's 8% plunge on Monday triggered the year's seventh trading halt, intensifying scrutiny. Regulators have expressed rare public regret over approving the products. FSS Governor Lee Bok-hyun stated he "regretted not doing everything possible to prevent" their introduction and acknowledged structural problems, citing massive retail investments and legal complications from a rushed rollout. Possible countermeasures under discussion include raising margin requirements, imposing daily price limits, and adjusting leverage caps. However, officials admit these may be temporary fixes. Data confirms the amplified volatility. Since the ETFs' launch, days with KOSPI moves exceeding 3% have nearly doubled. Trading halts have reached record levels, surpassing the 2008 financial crisis peak. The products allow 2x leveraged bets on giants like Samsung Electronics and SK Hynix. Their daily rebalancing to match returns is seen as mechanically fueling market swings. The outcome of Thursday's F4 meeting is highly anticipated, with expectations leaning towards stricter controls on leverage, investor access, or other structural constraints to curb the products' market impact.

marsbit24 dk önce

How to Regulate Single-Stock Leveraged ETFs? On Thursday, the Entire Market Is Watching This Korean Government Meeting

marsbit24 dk önce

AI Overhauled Terence Tao's 30-Year-Old Website, Uncovering Two Bugs Hidden for Over Two Decades in the Process

AI Revamps Terence Tao's 30-Year-Old Website, Unearthing Two 20-Year-Old Bugs in His Code Terence Tao, a renowned mathematician, has enlisted an AI agent to overhaul his personal academic website, which was built in 1997 with a static HTML, manually-maintained "Web 1.0" architecture. In just one day, the agent migrated 560 papers and preprints, 374 travel logs, 68 courses, 19 books, and 29 old math applets to a new system on GitHub Pages. The new site is structured around YAML files as the "single source of truth," with static HTML pages automatically generated from this data—a fundamental shift from maintaining individual documents to managing a centralized database. During the migration, the AI uncovered inconsistencies, outdated entries, and broken links that had accumulated over nearly three decades of manual updates. It also successfully ported a set of small educational Java 1.0 applets to JavaScript. Notably, while reviewing this translation, Tao found only one new bug introduced by the AI. Conversely, the AI identified two subtle bugs in his original Java code that he was previously unaware of. Tao emphasizes the project highlights AI's potential for automating tedious "digital housekeeping"—routine tasks like data migration and website maintenance that are costly and error-prone when done manually. He also revived a 27-year-old stalled project: a special relativity visualizer or "Minkowskian Inkscape." With AI assistance, a working alpha version was built in two hours. While AI still requires human oversight for critical work, Tao argues that for such structured, non-core tasks, "AI + human review" can result in lower error rates and drastically lower correction costs compared to purely manual maintenance over decades.

marsbit24 dk önce

AI Overhauled Terence Tao's 30-Year-Old Website, Uncovering Two Bugs Hidden for Over Two Decades in the Process

marsbit24 dk önce

İşlemler

Spot
活动图片