Key facts
- An attacker exploited The DAO ten years ago.
- The exploit drained 3.6 million ETH.
- The attacker used a reentrancy vulnerability.
- The exploit occurred while fixes were pending community approval.
- The event led to a hard fork of the Ethereum blockchain.
- Ethereum Classic was created as a result of the hard fork.
A decade ago, a significant exploit targeted The DAO, a prominent decentralized autonomous organization built on the Ethereum blockchain. An attacker successfully drained approximately 3.6 million Ether (ETH) by leveraging a reentrancy vulnerability. This exploit occurred during a period when the community was actively discussing and seeking approval for potential fixes to the smart contract's code. The inability to quickly implement a solution and the subsequent debate over how to respond to the attack led to a major division within the Ethereum community. Ultimately, this division resulted in a hard fork of the Ethereum blockchain. The hard fork created two separate chains: the original Ethereum chain, which rolled back the transactions to recover the stolen funds, and a new chain that continued from the point of the exploit, which became known as Ethereum Classic. The incident remains a pivotal moment in the history of decentralized finance and blockchain governance, highlighting the challenges of managing decentralized systems and responding to security threats.