ChainCatcher news, Yearn announced that it will launch the new YBS staking system for yPRISMA on Thursday (May 9) at 00:00 UTC according to the YIP-77 proposal. All yPRISMA stakers need to migrate their assets to continue earning staking rewards. The best migration period is within one week after the new system goes live. Users can choose to deposit into the new yPRISMA Yearn gun pool yvyPRISMA, or directly stake into the new Yearn Boosted Staker (YBS).It is reported that the yvyPRISMA option is suitable for users who want to increase their yPRISMA positions and are more concerned about Gas costs. The YBS direct staking option is suitable for users who want to earn stablecoin rewards, do not mind additional Gas costs, and expect to become long-term participants in the ecosystem.In addition, YBS adopts an innovative mechanism to incentivize long-term stakers by providing them with higher rewards. Rewards will be distributed in the form of Yearn gun pool wrapped stablecoin yvmkUSD-A, which can be claimed at the beginning of the week after staking for a full week.To ensure safety, the reward contract will ignore the staking amount during the first week of staking. Therefore, no users will be eligible to receive the 1x boost before May 23 after the new system goes live. Users who complete the migration within the migration week (before May 16, 00:00 UTC) can claim the accumulated double rewards on that day.Users who migrate after the migration period will miss out on a week of double rewards. The original yPRISMA staking contract will be deprecated this Thursday.

ChainCatcher news, on-chain detective ZachXBT released an investigation regarding the suspected $11.1 million exploit of Prisma by 0x77 (Trung) and several vulnerabilities involved. On March 28, 2024, the Prisma team observed a series of transactions on the MigrateTroveZap contract, resulting in a loss of 3,257 ETH (approximately $11.1 million).Initially, the attacker communicated with the Prisma deployers, claiming it was a white hat attack. However, later that same day, all funds were transferred to Tornado Cash, contradicting the previous statement. The exploiter began to make excessive demands, requesting a $3.8 million (34%) white hat bounty. This amount is far above the industry standard of 10%, effectively extorting the team, as the treasury did not have sufficient assets to compensate users.Through on-chain tracking, PrismaFi exploiter 0x77 was previously implicated in the Arcade exploit incident in March 2023 and the Pine protocol exploit incidents starting in February 2024. Additionally, the exploiter's address is linked to the deployer address of Modulus Protocol. 0x77 is one of the few followers of this project, strengthening the connection between each event. Further analysis of this suspected scammer's phone number, email, and other details has been conducted. Their posts on X indicate they have a strong technical background. Currently, all personal details have been compiled, and the Prisma team is pursuing all possible legal avenues in Vietnam and Australia. ZachXBT urged this scammer to return the funds promptly to prevent further escalation and save time for everyone.

ChainCatcher message, Prisma Finance has resumed the protocol and restarted lending transactions. Proposals PIP-035 and PIP-036 have been executed, and Prisma is back online with the protocol unpaused. Prisma Finance will re-establish normal functions, including complete Vault management and deposits into the stable pool, allowing Prisma DAO to continue driving demand for mkUSD and ULTRA.Prisma Finance points out the V2 vault migration; if user positions are still in the historical vault, please remember to use the new audited Zap contract to switch to the v2 vault.

ChainCatcher news, the multi-chain staking platform PrismaStake announced the completion of a $6 million seed round financing, with investor information not yet disclosed.According to reports, PrismaStake aims to provide users from different backgrounds with opportunities to earn passive income through ETH crypto staking, altcoin staking, and more. The platform supports various blockchain protocols, including EVM-compatible chains and layer two solutions.

ChainCatcher news reports that an address starting with 0x2d4, marked as one of the attackers of Prisma Finance, stated 17 hours ago: "The team needs to hold an online press conference, during which all team members must present their identification and apologize and thank all users, investors, and me. In this meeting, the team must specify the mistakes made, which party reviewed the smart contract, and the plans for improving security in the future. After the meeting, I will discuss the amount I have retained and the amount I can return to the project party, and I will send the notes to the email."Subsequently, Prisma Finance responded: "We have no evidence to prove your sincerity in returning the assets. Most genuine white hats have returned at least some funds by now. If you do not believe we can manage the return of user assets, please hand it over to a respected public third party. Or return it directly to the affected users yourselves. But you should do this immediately to prevent further harm to those you claim to protect."

ChainCatcher message, the attacker of Prisma Finance left a message on-chain for the Prisma Finance team, mainly stating: "You (Prisma Finance) lack sincerity (you did not respond to messages in a timely manner, nor did you address the issues), gratitude (you did not thank me and other users for waiting), and remorse (you did not apologize to users, nor did you propose a solution or improvement plan). I want to emphasize again that my actions are purely white hat, but I find it hard to believe in the Prisma Finance team.Prisma Finance needs to hold a public meeting to disclose the team's identity, apologize to all users and me, explain future plans, and announce that the attacker bears no responsibility. After the meeting, I will discuss with you the amount I will retain and the amount that can be returned to you (rest assured, most of it will be returned)."

ChainCatcher message, Prisma Finance has released a vulnerability attack analysis report, which indicates that vulnerabilities in the mkUSD and ULTRA contracts resulted in a loss of 3,257 ETH, worth approximately 11 million USD. The Prisma team is continuing to investigate and is working to communicate with the exploiters. Once we confirm that all funds are secure, we will lift the suspension of the protocol. Currently, about 20 addresses are still affected. Prisma Finance will make every effort to recover user funds and will keep you updated on the latest developments regarding the next steps.

ChainCatcher message, according to the Cyvers Alerts system monitoring, the attacker of Prisma Finance has once again left a message on-chain to the project team stating: Before proceeding to the next step, I would like to transfer the funds to a safer place. Please answer my questions.What are your thoughts on the term "smart contract"?Was this contract audited before deployment?In this case, what is the developer's responsibility? I am not doing this for any other reason but to raise awareness about serious contract audits, the developer's attitude towards their work, and project accountability.

ChainCatcher message, according to the monitoring by Shield, the attacker address of Prisma Finance transferred 800 ETH to Tornado Cash.

According to ChainCatcher news, monitored by Pie Shield, one of the addresses marked by the Prisma Finance attackers has transferred approximately 200 ETH to Tornado Cash and 6 ETH to two addresses 0x8c03 and 0xce63.The address 0x8c03 received 0.05 ETH from the Affine DeFi hacker address about 11 days ago.

ChainCatcher news, according to on-chain messages, the mastermind behind the theft of $11.6 million using the DeFi protocol Prisma Finance claims it was a "white hat rescue" and is inquiring about the return of the funds.About 6 hours after the attack, a message was sent from the address "0x2d4...7507a" (identified as one of the three addresses related to the attack) stating: "Hello, this is a white hat rescue, who can I contact to refund?" Prisma replied: "Please contact us at negotiations@prismafinance.com."

ChainCatcher message, Prisma Finance announced on platform X that the Prisma protocol has been suspended after a vulnerability affected many users' personal vaults, and the remaining funds are safe. mkUSD and ULTRA, as stablecoins, are over-collateralized and pose no risk. Internal checks will be conducted subsequently to attempt to recover the funds, and Prisma Finance reminds users to be cautious of phishing link scams.

ChainCatcher news, according to PeckShield monitoring, the attacker address of Prisma Finance has transferred the stolen funds (approximately 3,257.69 ETH, worth about 11.6 million USD) to 3 addresses.

ChainCatcher news, PeckShield has posted on social media that the attack on Prisma is still ongoing, with total losses now amounting to approximately 3,257.7 ETH (around 11.6 million USD). Vault owners are advised to stay updated with official news to avoid scams.

ChainCatcher message, the liquid staking protocol Prisma Finance reminds all users of the vault on platform X that it is currently necessary to disable delegated trading approvals.

ChainCatcher message, the market shows that PRISMA has fallen below $0.3, currently reported at $0.275, with a 24H decline of 26.7%.

ChainCatcher message, the liquidity re-staking protocol Prisma Finance announced on platform X that there may be vulnerabilities in its protocol. Currently, core engineering contributors will suspend the protocol and conduct an investigation, and updates and post-analysis will be shared later.

ChainCatcher news, PeckShield confirmed on social media that Prisma Finance has been attacked, with a specific loss amount of 8.1 million dollars.

ChainCatcher news, the DeFi security agency Decurity posted on social media that Prisma Finance was attacked and $8 million was stolen.

ChainCatcher news, the LSD stablecoin protocol Prisma Finance tweeted to announce the launch of the liquidity reward token "smkUSD" for mkUSD. Prisma Finance stated that the stable pool is an important component of the Prisma system, enabling efficient liquidation and helping to maintain the system's solvency. It is reported that over two-thirds of the mkUSD supply is held in the stable pool, providing stability assurance for the Prisma protocol. smkUSD will represent mkUSD deposited in the stable pool and can be used for re-collateralization and rebalancing.