Verify a decision

{"actor":"system:backfill","investigation_id":"08b6b559-557f-4d54-8a33-8727c662467f","kind":"publish","page_slug":"concentric","published_at":"2026-05-27T18:12:42.404Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Concentric","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://docs.concentric.fi","type":"other","url":""},{"credibility":3,"name":"https://docs.concentric.fi/overview/active-liquidity-management","type":"other","url":""},{"credibility":3,"name":"https://docs.concentric.fi/tokenomics/cone-token","type":"other","url":""},{"credibility":3,"name":"https://coincodex.com/crypto/concentric-fi/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://crypto.news/concentric-app-suffers-1-7m-social-engineering-hack-on-arbitrum/","type":"other","url":""},{"credibility":3,"name":"https://www.certik.com/resources/blog/6ZxRxjsoFhsmRQwCZzLUK1-concentric-fi-incident-analysis","type":"other","url":""},{"credibility":3,"name":"https://cryptobriefing.com/concentricfi-confirms-security-breach-damage-estimated-1-6-million/","type":"other","url":""},{"credibility":3,"name":"https://beincrypto.com/concentricfi-security-break/","type":"other","url":""},{"credibility":3,"name":"https://www.web3isgoinggreat.com/single/concentric-finance-exploit","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.certik.com/resources/blog/6ZxRxjsoFhsmRQwCZzLUK1-concentric-fi-incident-analysis","type":"other","url":""},{"credibility":3,"name":"https://cryptobriefing.com/concentricfi-confirms-security-breach-damage-estimated-1-6-million/","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/concentric-app-suffers-1-7m-social-engineering-hack-on-arbitrum/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.certik.com/resources/blog/6ZxRxjsoFhsmRQwCZzLUK1-concentric-fi-incident-analysis","type":"other","url":""},{"credibility":3,"name":"https://www.tradingview.com/news/cryptobriefing:32c45c86e094b:0-concentric-s-1-8-million-exploiter-is-tied-to-okx-and-lunafi-incidents-certik-reports/","type":"other","url":""},{"credibility":3,"name":"https://crypto-economy.com/concentricfi-falls-victim-to-1-6-million-exploit-unearths-ties-to-infamous-okx-attacker/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://beincrypto.com/concentricfi-security-break/","type":"other","url":""},{"credibility":3,"name":"https://coincodex.com/crypto/concentric-fi/","type":"other","url":""},{"credibility":3,"name":"https://coinmooner.com/news/coinmooner-investigates-the-hack-of-concentricfi-hacker-attack-and-losses-of-1.8-million","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://crypto.news/concentric-app-suffers-1-7m-social-engineering-hack-on-arbitrum/","type":"other","url":""},{"credibility":3,"name":"https://cryptobriefing.com/concentricfi-confirms-security-breach-damage-estimated-1-6-million/","type":"other","url":""},{"credibility":3,"name":"https://cryptonews.com/news/concentric-confirms-1-6m-private-key-breach-on-arbitrum-protocol/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://en.wikipedia.org/wiki/ZachXBT","type":"other","url":""}]}],"sources_used":[],"summary":"Concentric (Concentric.fi) was an automated liquidity management protocol built on Camelot v3 on the Arbitrum network, offering vault-based yield optimization for concentrated liquidity positions. On January 22, 2024, the protocol suffered a critical security breach when a team member's deployer wallet was compromised through a targeted social engineering attack, resulting in approximately $1.85 million in losses and a 57% crash in the CONE token price. The protocol was subsequently halted entirely, and blockchain forensics firm CertiK linked the exploiter's wallets to prior incidents targeting OKX, UnoRe, and LunaFi, suggesting a sophisticated and recurring threat actor.","timeline":[{"date":"2023-12-13","event":"OKX DEX exploit occurs, resulting in approximately $2.7 million in losses. Wallet later connected to the Concentric attacker is involved in this incident.","source":""},{"date":"2024-01-22","event":"Concentric Finance exploited via social engineering attack on a team member's deployer wallet. Attacker upgrades vault contracts, mints LP tokens via adminMint(), drains vaults of approximately 715 ETH. A second phase sweeps 65.4 ETH from user approvals. Total losses approximately 780 ETH (~$1.85 million).","source":""},{"date":"2024-01-22","event":"Cyvers detects suspicious activity. CertiK publishes Skynet alert identifying the exploiter wallet as linked to the OKX exploit. Initial loss estimates cited as approximately $1.6 million, later revised upward.","source":""},{"date":"2024-01-22","event":"Concentric team confirms breach via official channels, urges all users to revoke approvals on vault contracts, halts the protocol entirely.","source":""},{"date":"2024-01-22","event":"CONE token price drops approximately 57% following public announcement of the exploit.","source":""},{"date":"2024-01-22","event":"CertiK publishes full incident analysis linking the exploiter to OKX, UnoRe, and LunaFi incidents, indicating a pattern of coordinated attacks.","source":""},{"date":"2024-01-22","event":"Protocol announced as halted indefinitely, with 8 ETH and residual USDC remaining in the treasury.","source":""}]},"v":1}