Mirror Protocol

Terra-based DeFi app Mirror Protocol has suffered an estimated US$2 million exploit related to the recent rebrand of the original Terra blockchain as Terra Classic.

This is the second major exploit of Mirror Protocol to be revealed in the past week:

Mirror Protocol is being exploited again as we speak, and the devs are completely MIA. So far, the attacker has drained over $2m and counting – the attack will get worse when markets open tomorrow unless the dev team steps in and fixes the price oracle. @mirror_protocol (1/4)
— FatMan (@FatManTerra) May 30, 2022

During the attack, the pools for mBTC, mETH, mDOT and mGLXY were virtually completely drained – and initially there were fears all asset pools could be drained, before developers belatedly patched the exploit.

What is Mirror Protocol?

Mirror Protocol is a DeFi app that allows for the creation of digital ‘mirrors’ of real-world assets, such as stocks and other cryptocurrencies, which closely track the price of the assets on which they’re based.

Mirror is built on the Terra Classic blockchain, but its assets are also available on other chains such as Ethereum and Binance Smart Chain.

Attacker Exploited Confusion Caused by New Terra Chain

The attack was initially discovered by a user of the Mirror Protocol forum known as Mirroruser and was shared on Twitter by Terra analyst FatManTerra.

FatManTerra explained the exploit was possible because many Terra Classic validators were running outdated software and reporting the price of the new Terra (LUNA), which at the time was valued at about US$9.80, rather than the price of the original Terra Classic (LUNC), valued at around US$0.0001. This discrepancy allowed the attacker(s) to acquire US$1.3 million of collateral, such as mBTC, for every US$1000 in LUNC they spent:

A bug in the pricing oracle is telling the system that LUNC is worth around 5 UST when it’s actually under a microcent. For $1k in LUNC, an attacker can now load up on $1.3m in collateral but can pull out real assets by borrowing. Example tx: https://t.co/QBxgAq8ovb (2/4)
— FatMan (@FatManTerra) May 30, 2022

There were initially fears that the exploit wouldn’t be fixed before US stock markets opened, allowing the attacker to drain stock-based asset pools such as mAAPL and mAMZN:

So far, the mBTC, mETH, mDOT and mGLXY pools have been drained. In around 12 hours, the market feed will kick in, and the attacker will be able to drain all of the mAsset pools (such as mSPY and mAAPL, mAMZN, etc.) – most of the pools can still be saved. (3/4)
— FatMan (@FatManTerra) May 30, 2022

Fix Put in Place Before Trading Begins

However, this was narrowly avoided as the developers were able to fix the incorrect pricing information just before US markets opened. The devs also disabled the usage of mBTC, mETH, mDOT and mGLXY, meaning the attackers couldn’t use their ill-gotten assets to drain any other pools.

This was the second major exploit of Mirror Protocol revealed this week. Just days ago, FatManTerra reported an attack that occurred on October 8, 2021 and went unnoticed for an astonishing seven months, resulting in the loss of more than US$88 million in assets.

The past month has been rough for DeFi, with the chaos surrounding the collapse of the Terra ecosystem causing large discrepancies across platforms in the price of Terra-based stablecoin UST, leading to significant losses for some DeFi apps such as Blizz Finance and Venus Protocol.

DeFi exploits have also become increasingly commonplace of late; just weeks ago, Fortress Lending was taken for an estimated US$3 million.

Welcome to this weekly series from the TradeRoom. My name is Dave and I’m the founder of The Crypto Den, an Australian-based crypto trading and education community aiming to give you the knowledge to take your trading game to the next level.

Crypto Market Outlook

Finally, after two months of a choppy sideways market, we have movement! The TOTAL cap and BTC have chosen the 30% chance of an upside breakout with the TOTAL sitting just above US$2 trillion. This is the first solid change in market structure we’ve seen in months, and we’re now above the daily 200 EMA. Still some work to do, though! Let’s take a closer look.

For a BTC long trade, I’ll be waiting for a pullback to enter. What I want to see here is a confirmed and clear S&R flip. What I’m cautious of is a bull trap (something like the white arrow line happening), which is why we wait for confirmation. A test on support followed by some positive candlestick analysis and maintaining price action above that 200 EMA on the daily will support this. This is what SAFE traders do. We don’t just ape into a pump and hope for moon.

If this push fails, you can see I have a game plan ready either way and this will also be the case for any ALT trades.

This Week’s Trades

CHZ/USDT

Currently being held up on the daily 200 EMA, I see opportunity for CHZ to pull back and confirm an S&R flip for a long entry. Again, a positive change in market structure is great – we just need that first confirmation.

BAT/USDT

BAT has broken out of a four-month downtrend and tested it positively with a nice bounce. If BTC price action continues, BAT could see a decent 50% pump. Like all coins at the moment, there are still some walls to push through but the risk to reward ratio (R:R) on this trade looks good. I’d expect this to play well with a big green candle above US$1.00.

BAT/USDT

MIR/USDT

Quite an aggressive trade getting in long here before a breakout, but the R:R is pretty good. MIR is lagging behind the pack and a 50% pump isn’t out of the question.

MIR/USDT

LRC/USDT

LRC is forming a bullish pennant right on the 100 and 200 daily EMA, as well as daily resistance. A breakout here and there’s potential for 70%! If you look left, you can see LRC did 70% over only four days back in November 2021.

LRC/USDT

Introducing TCD’s New Social Platform

The Crypto Den now has a FREE purpose-built social platform to share investment ideas, trade chat, connect to like-minded people, share info and more, without the censorship of Facebook. The platform is designed for those more focused on the investment/profitable side of the crypto world.

Are You a Trader?

Invite to Join our TradeRoom

If you’d like to become a better trader, you’re invited to join our TradeRoom where we share daily charts and market analysis. In our community we strongly encourage and teach correct risk management strategies to keep our members safe in this new volatile crypto market.
Join our “Apprentice” plan now for your 7-day trial.

The Crypto Den was created in 2017 to help the rapidly growing crypto community learn and understand the fundamentals of digital currencies and how to trade them.

Since then we have taught thousands of members the basics of technical analysis and trading strategies to further progress and perfect their trading abilities.

In the TradeRoom you will be included in a supportive environment which encourages personal growth, education and community support.

It’s a place to share your trading ideas and follow other experienced traders’ feeds to help keep your finger on the pulse of such a volatile market!