chaindrainMVP
Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.
← back to incident ledger

access control missingDemo

Sep 14, 2021 · $13.9M · protocol

Narrative

On 2021-09-14, Sommelier suffered a access control missing incident resulting in approximately $13,862,999 in losses. The exploit targeted the protocol layer. Attribution: unattributed_criminal. This is a demonstration entry — not a real incident.

Victims

Classification

Root cause
access_control_missing
Secondary causes
Attack layer
protocol
Strategy
tech_vuln
Actor role
target
Attribution
unattributed_criminal
Attacker address
0xbd9be40984842da80c9c84982dfe8e061eb0b045
Flash loan
no
Audited at time
no
Bounty at time
no

AADAPT mappings

DEMO:AADAPT.TA0004DEMO:AADAPT.TA0006DEMO:AADAPT.T1078

Evidence

Disclosure date
Sep 15, 2021
Funds recovered
$3.4M
Audit firms at time
Post-mortem URLs (synthetic)
  • https://medium.com/sommelier/post-mortem-sommelier-2021-09-14
tx hashes (3)
  • 0x2077df7db280770ca485f74401bfa2041f4dc867a43b234b2a3c9248a3b4a430
  • 0xc061d3380c905f06188c6ecf12d0d3418a119e1edf5cf571a4e2f67b19d632c0
  • 0x3b2767205eff7591e30469ec6842f7835a03f40b68fbb6836ea583b2bea4ffac