shield Business Logic Flaw · $18K loss

Inside the WECO Business Logic Flaw — $18K gone on November 16, 2023

Q: How much did WECO lose?

The WECO exploit in November 2023 resulted in $18,000 in losses — the 129th largest of 214 DeFi incidents that year.

Q: When did the WECO hack happen?

The WECO exploit was recorded on November 16, 2023 — 880 days ago.

Q: What type of exploit hit WECO?

The WECO incident is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share.

Q: How common is the Business Logic Flaw pattern seen at WECO?

Our archive contains 144 documented business logic flaw incidents. The WECO incident is one of them.

Q: How does WECO compare to the largest Business Logic Flaw attack?

The largest business logic flaw incident in our archive is - EulerFinance (2023) at $200M. The WECO loss is $18K.

Q: How do stakeholders benefit from blockchain in supply chain management?

Stakeholders benefit through enhanced data sharing, service optimization, and creation of new services.

On November 2023, WECO was exploited in a business logic flaw, resulting in approximately $18K in losses. That makes the WECO exploit the 340th largest DeFi incident out of 690 documented in our archive.

Attack Mechanics: How the WECO Business Logic Flaw Played Out

Exploit Class Applied to WECO

The WECO incident on November 16, 2023 is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share. In the full archive, WECO is 1 of 144 documented business logic flaw incidents.

WECO in Context

At $18K, the WECO exploit is a minor (<$1M) event compared to the largest same-class incident in our archive — – EulerFinance (2023) at $200M.

Prior Business Logic Flaw Before WECO

The nearest business logic flaw incident before WECO was XAI, 1 day earlier on November 15, 2023. The same exploit class surfaced again within the business logic flaw attack surface.

Impact & Recovery for WECO

WECO Loss Figure

The WECO exploit caused $18,000 in losses — a minor (<$1M) incident and the 129th largest of 214 documented in 2023.

Where WECO Sits Among Business Logic Flaw Attacks

Ranked by loss size, WECO is the 72nd largest of 144 business logic flaw incidents documented. That puts the WECO loss below the class average of $6.08M.

Timeline Since the WECO Incident

The WECO exploit occurred 2.4 years ago (880 days). The contract, its fork-block, and the attack transaction remain on-chain and forensically reproducible.

Primary Reference for WECO

Public post-mortem / on-chain analysis for the WECO incident: view source.

FAQ

How much did WECO lose?

The WECO exploit in November 2023 resulted in $18,000 in losses — the 129th largest of 214 DeFi incidents that year.

When did the WECO hack happen?

The WECO exploit was recorded on November 16, 2023 — 880 days ago.

What type of exploit hit WECO?

The WECO incident is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share.

How common is the Business Logic Flaw pattern seen at WECO?

Our archive contains 144 documented business logic flaw incidents. The WECO incident is one of them.

How does WECO compare to the largest Business Logic Flaw attack?

The largest business logic flaw incident in our archive is – EulerFinance (2023) at $200M. The WECO loss is $18K.

How do stakeholders benefit from blockchain in supply chain management?

Stakeholders benefit through enhanced data sharing, service optimization, and creation of new services.

Which computing paradigms provide support for local monitoring and control in smart buildings?

Edge and fog computing.