BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Truebit $26M Exploit: Overflow Bug Lets Cheap TRU Mint Now!!

Integer overflow in Truebit's Solidity 0.6.10 Purchase contract let attacker mint ~$26M TRU for near‑zero cost, plunging the token price ~99%

  • An attacker exploited a smart-contract bug to mint about $26 million worth of TRU tokens at almost no cost.
  • The flaw stemmed from integer overflow in the Purchase contract, which reduced price calculations to near zero.
  • The contract used Solidity 0.6.10, which lacked built-in overflow checks, causing silent wraparound on uint256 overflow.
  • Security firm SlowMist published a detailed post-mortem of the incident.
  • Industry data show smart-contract bugs were the top attack vector in 2025, while phishing and account compromises remained major threats.

An attacker exploited a smart-contract logic error in the offline computation protocol Truebit, minting roughly $26 million in TRU tokens at almost no cost and triggering a roughly 99% crash in the TRU price. The incident occurred on the protocol’s deployed contracts, and the vulnerability let the attacker drain contract reserves by creating large token amounts without paying the required ETH.

- Advertisement -

Security firm SlowMist published a detailed analysis explaining the root cause. “Due to a lack of overflow protection in an integer addition operation, the Purchase contract of Truebit Protocol produced an incorrect result when calculating the amount of ETH required to mint TRU tokens,” the report said. That error caused price calculations to be “erroneously reduced to zero,” enabling near-free minting.

The contract was compiled with Solidity 0.6.10, a version that did not include built-in overflow checks. Calculations that exceeded the maximum uint256 value triggered a “silent overflow” and could “wrap around a small value near zero.” The exploit leveraged this wraparound to subvert the purchase logic.

The incident highlights ongoing risks in established projects; Truebit launched on the Ethereum mainnet in April 2021. Separately, AI agents have demonstrated the ability to find smart-contract flaws: a research paper reported AI-discovered exploits valued at $4.6 million during testing.

Broader industry data from SlowMist’s 2025 report show smart-contract vulnerabilities were the largest attack vector that year, with 56 incidents and 30.5% of exploits. Account compromises numbered 50 incidents (24%), and private key leaks accounted for 8.5%. Phishing remained costly: security firm CertiK recorded $722 million stolen across 248 phishing incidents in 2025, down 38% from about $1 billion the prior year. For a related video, see this coverage clip.

- Advertisement -

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

WordPress core hit by zero-click RCE bug, patch now live

WordPress patched a pre-authentication remote code execution flaw in versions 6.9.5 and 7.0.2 on...

ECB: Stablecoin growth puts European bank deposits at risk

ECB board member Piero Cipollone warned Friday that stablecoin growth could strip European banks...

Tesla Launches Megacharger Network with Bloomington Station

Tesla opened a new public Megacharger station in Bloomington, California, calling it the start...

Apple Overtakes Nvidia as World’s Most Valuable Public Company

Apple briefly surpassed NVIDIA as the world’s most valuable publicly traded company, hitting an...

Galaxy Digital buys naming rights to Texas Tech stadium in 15-year deal

Galaxy Digital signed a 15-year naming rights deal with Texas Tech, renaming the football...

Must Read

7 Best Audiobooks on Cybersecurity

Cybersecurity has become an essential topic in our increasingly digital world. As technology evolves and becomes more integrated into our daily lives, the importance...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading