Key facts
- A reentrancy exploit targeted The DAO ten years ago.
- The exploit drained 3.6 million ETH from The DAO.
- The hack forced a hard fork of the Ethereum blockchain.
- The hard fork created Ethereum Classic.
- A new security fund has been established.
- The fund is seeded with unclaimed ETH from The DAO hack.
- The fund aims to bolster Ethereum's security research and incident response.
A decade ago, The DAO, a decentralized autonomous organization built on Ethereum, suffered a major exploit. A reentrancy attack drained approximately 3.6 million ETH from the organization's treasury. This significant loss of funds necessitated a controversial hard fork of the Ethereum blockchain. The hard fork resulted in the creation of Ethereum Classic (ETC), while the main Ethereum chain continued with the altered ledger that effectively reversed the hack. The incident exposed critical security flaws in early smart contract development and governance models.
In the wake of this event, a new security fund has been launched. This fund is being capitalized with unclaimed ETH that was recovered from the original hack. The primary objective of this initiative is to bolster Ethereum's security research and to improve its incident response mechanisms. The fund aims to prevent similar catastrophic events from occurring in the future by supporting ongoing security audits, vulnerability research, and the development of more robust security protocols within the Ethereum ecosystem.