On March 2024, ETHFIN suffered a access control on BNB Chain — the first of 77 documented access control incidents in our archive where the loss figure was not publicly disclosed but the exploit pattern is documented below.
Attack Mechanics: How the ETHFIN Access Control Played Out
Exploit Class Applied to ETHFIN
The ETHFIN incident on March 29, 2024 is classified as a Access Control. A privileged function lacks a proper authorisation check, letting an unauthorised caller execute it. In the full archive, ETHFIN is 1 of 77 documented access control incidents.
ETHFIN in Context
The ETHFIN incident joins a class whose largest loss to date is Corkprotocol (2025) at $12M.
Prior Access Control Before ETHFIN
The nearest access control incident before ETHFIN was CGT, 6 days earlier on March 23, 2024. The same exploit class surfaced again within the access control attack surface.
ETHFIN Vulnerability Signature
The primary source categorises the ETHFIN exploit specifically as “lack of access control”. This narrower label is entity-specific: it reflects how the ETHFIN contract failed, rather than the broad access control pattern alone.
Target Chain: BNB Chain
The vulnerable ETHFIN contract was deployed on BNB Chain — one of 23 documented incidents on BNB Chain. This determines the block cadence, mempool, and forensic tooling available to investigators.
Impact & Recovery for ETHFIN
ETHFIN Loss Figure
The loss figure for ETHFIN is not publicly disclosed. The primary source reports the exploit in non-USD terms, so no USD estimate is published here. For reference, the average loss across 77 access control incidents in our archive is $636K.
Timeline Since the ETHFIN Incident
The ETHFIN exploit occurred 2 years ago (746 days). The contract, its fork-block, and the attack transaction remain on-chain and forensically reproducible.
Primary Reference for ETHFIN
Public post-mortem / on-chain analysis for the ETHFIN incident: view source.
FAQ
How much did ETHFIN lose?
The ETHFIN loss figure is not publicly disclosed. The primary source reports the exploit in non-USD token terms, so no USD estimate is published here.
When did the ETHFIN hack happen?
The ETHFIN exploit was recorded on March 29, 2024 — 746 days ago.
What type of exploit hit ETHFIN?
The ETHFIN incident is classified as a Access Control. A privileged function lacks a proper authorisation check, letting an unauthorised caller execute it.
Which blockchain was ETHFIN deployed on?
The ETHFIN contract was deployed on BNB Chain, one of 23 documented incidents on that chain.
How does ETHFIN compare to the largest Access Control attack?
The largest access control incident in our archive is Corkprotocol (2025) at $12M. The ETHFIN loss was not publicly disclosed.
What is the role of weighted threshold secret sharing in the BBDSPP scheme?
It allows flexible combinations of permissions for data sharing adaptability.
What is one of the innovative security protocols boosting blockchain's viability in finance?
Self-executing security protocols like 'Proof of Work', 'Proof of Stake', and 'Smart Contracts'.