chaindrainMVP
Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.
← back to incident ledger

frontend dns hijackDemo

Jun 24, 2024 · $2.7M · frontend

Narrative

On 2024-06-24, Three Sigma suffered a frontend dns hijack incident resulting in approximately $2,700,587 in losses. The exploit targeted the frontend layer. Attribution: unknown. This is a demonstration entry — not a real incident.

Victims

Classification

Root cause
frontend_dns_hijack
Secondary causes
Attack layer
frontend
Strategy
tech_vuln
Actor role
target
Attribution
unknown
Attacker address
0x7221cc469ea9d841627cc45697f299dbdbc75ed0
Flash loan
no
Audited at time
no
Bounty at time
no

AADAPT mappings

DEMO:AADAPT.TA0001DEMO:AADAPT.TA0008DEMO:AADAPT.T1071.001DEMO:AADAPT.T1583.001

Evidence

Disclosure date
Jun 27, 2024
Funds recovered
Audit firms at time
Post-mortem URLs (synthetic)
  • https://medium.com/three-sigma/post-mortem-three-sigma-2024-06-24
  • https://rekt.news/three-sigma-rekt
tx hashes (2)
  • 0x644fbbc7fb4b328acb1191f465738969e5179aa65e27f16dc38a9cadcf22839d
  • 0xee8e706f2c24826b837e175b2ee2d2b0e04b904544449ed74122b3cc88b46d12