chaindrainMVP
Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.
← back to incident ledger

proxy admin compromiseDemo

Jan 29, 2025 · $214.7M · protocol

Narrative

On 2025-01-29, Stripe (Crypto On-Ramp APIs) suffered a proxy admin compromise incident resulting in approximately $214,655,379 in losses. The exploit targeted the protocol layer. Attribution: whitehat. This is a demonstration entry — not a real incident.

Victims

Classification

Root cause
proxy_admin_compromise
Secondary causes
access_control_missing
Attack layer
protocol
Strategy
tech_vuln
Actor role
target
Attribution
whitehat
Attacker address
0x15dbbcd124a6db46c678652df869e8e7a8f00ab0
Flash loan
no
Audited at time
no
Bounty at time
no

AADAPT mappings

DEMO:AADAPT.TA0006DEMO:AADAPT.TA0008DEMO:AADAPT.T1078.004

Evidence

Disclosure date
Jan 31, 2025
Funds recovered
Audit firms at time
Post-mortem URLs (synthetic)
  • https://medium.com/stripe-crypto-on-ramp-apis/post-mortem-stripe-crypto-on-ramp-apis-2025-01-29
tx hashes (1)
  • 0x85464a7737469a322c7731c054ebe2b631563a379b30bb3890e9d23a10ba11de