Decentralized insurance protocol Cover holds vote to cover Pickle hack

Published at: Nov. 22, 2020

In what might be an important step towards the maturation of the decentralized insurance space, a claim was filed yesterday with DeFi insurance protocol Cover following the $19 million Dai hack of Pickle Finance — and so far, the majority of users want to see a payout happen.

According to the claim on Cover’s website filed Nov. 21, there have been 99 votes at the time of publication throwing roughly 9,800 COVER tokens — more than 99% of respondent tokens — behind a "yes" vote to pay out affected coverage holders. Ivan Martinez, a technical advisor for Cover, said on Twitter that should the vote pass, the claim will move to its Claim Validity Committee “to decide if it’s valid for a payout or not.”

$COVER Protocol needs $COVER holders to head to the snapshot page to vote for the claim on $PICKLE finance. So far it seems a resounding yes to be paid out. https://t.co/P8nl5NgpiW https://t.co/VTnIi3HZ2O

— DeFi Ted (Bakes) (@DeFi_Ted) November 21, 2020

Although the hacker absconded with roughly $19 million in Pickle user funds, Cover clarified that any payout was not going to cover the entirety of the loss. In an interview with Cointelegraph, semi-anonymous and core Cover developer Alan said that after CVC approval, "all PICKLE CLAIM token holders will be able to redeem 1 CLAIM token for 1 DAI," assuming the Claim Validity Committee, or CVC, approves a 100% payout to holders, as Alan expects.

There are currently over 340,000 Pickle CLAIM tokens outstanding, where they trade on secondary markets for $0.90. Alan pointed out that this could lead to some "arbitrage opportunities" for traders who expect the proposal to pass. 

Pickle’s claim is one of the first test cases for a decentralized insurance protocol using a blockchain snapshot to vote on coverage. As many in the crypto space have been affected by hackers taking advantage of exploits since the DeFi boom began, the response on social media has been supportive of a payout, but also skeptical.

Many are concerned about what Cover will decide because yesterday’s attack on Pickle did not use a flash loan attack — a common tactic for hackers targeting DeFi protocols — but rather a maligned tool which some claim resembles more of an exit scam. The hackers were able to swap funds between a malicious copycat contract and Pickle’s yield-bearing vault — called the cDAI jar — leading to users noticing the jar had been emptied.

Under Cover’s guidelines, the project states it will pay out claims from exploits or certain attacks on smart contracts — specifically referencing flash loan attacks — resulting in “a material loss of funds from the smart contract, or smart contract system with funds either moved to another address which the original owner or owners do not control or the funds are made permanently irrecoverable.”

No matter what conclusion Cover ultimately reaches, its decision will have ramifications for the DeFi community. In addition to Pickle Finance, hackers have targeted several DeFi protocols this year resulting in the loss of millions in funds, from Harvest Finance, Value, Akropolis, Cheese Bank, and Origin, to name a few. A robust selection of insurance protocols such as Cover may help mitigate the fallout from such attacks. 

Said Cover's Alan:

"I think DeFi coverage is essential for mass adoption of these protocols. Some of these protocols that people are creating will change the financial industry for good, but since we are especially early, there are many attack vectors present, and many more unknown. Our job is to allow users to experiment with game-changing protocols while also remaining hedged against exploit risk."

Voting on Pickle’s claim will end on Nov. 23 at 11:59 AM EST.

Tags
Related Posts
Poly Network hacker returns nearly all funds, refuses $500K white hat bounty
The hacker behind a $610 million attack on the cross-chain decentralized finance (DeFi) protocol Poly Network has returned almost all of the stolen funds amid the project saying their actions constituted “white hat behavior.” According to a Thursday update on the attack from Poly Network, all of the $610 million in funds taken in an exploit that used "a vulnerability between contract calls” have now been transferred to a multisig wallet controlled by the project and the hacker. The only remaining tokens are the roughly $33 million in Tether (USDT), which were frozen immediately following news of the attack. The …
Business / Aug. 12, 2021
Whitehat hacker receives $1.5M bug bounty after patch pumps token price
A whitehat hacker has seen what was already one of the largest smart contract-related bug bounties ever awarded more than double, after the ARMOR token price pumped following the announcement of his reward. On Feb. 3 ArmorFi announced that Alexander Schlindwein of Idea Markets had identified a critical bug in its smart contracts before the insurance brokerage platform went live. If left unpatched, the bug would have allowed a bad actor with just one dollar of coverage to drain the entirety of funds from ArmorFi’s underwriting contract. Schlindwein was awarded 1 million Armor tokens, worth about $700,000 at the time …
Business / Feb. 5, 2021
The aftermath of Axie Infinity’s $650M Ronin Bridge hack
In late March, Ronin, an Ethereum sidechain built for the popular play-to-earn nonfungible token game Axie Infinity, was hacked for over 173,600 Ether (ETH) and 25.5 million USD Coin (USDC) for a combined value of over $600 million. The breach on the Ronin bridge was confirmed by Sky Mavis, the developers behind the popular play-to-earn (P2E) game: There has been a security breach on the Ronin Network.https://t.co/ktAp9w5qpP — Ronin (@Ronin_Network) March 29, 2022 The official report from the company noted that the hackers managed to get access to private keys to validator nodes resulting in the compromise of five validator …
Blockchain / April 12, 2022
Binance and Huobi freeze $1.4M in crypto linked to North Korean hackers
Cryptocurrency exchanges Binance and Huobi have again frozen accounts linked to the $100 million Harmony Horizon bridge attack on Jun. 24, 2022. Around $1.4 million worth of crypto frozen by the trading platforms came from accounts linked to the notorious Lazarus Group operating out of North Korea. The investigation was carried out by blockchain analytics firm Elliptic, according to a report shared by the firm on Feb. 14. However, the firm didn’t state what coins or tokens were frozen. Exchanges @binance and @HuobiGlobal today froze accounts containing $1.4 million stolen by North Korea’s Lazarus Group. This was made possible thanks …
Blockchain / Feb. 15, 2023
Top 7 cybersecurity jobs in high demand
In today’s digital age, cybersecurity has become a critical aspect of almost every business. Cyber threats are increasing daily, and businesses must take proactive measures to protect their networks and data. As a result, the demand for cybersecurity professionals has skyrocketed. Little Friday humour #meme #cybersecurity @hackurityio pic.twitter.com/MArEpCh03k — Harold De Vries (@devries_harold) February 17, 2023 In this article, we will discuss the top seven cybersecurity jobs that are in high demand. Cybersecurity analyst A cybersecurity analyst is responsible for identifying and mitigating cyber threats to an organization’s network and data. They examine system logs and network traffic to find …
Technology / Feb. 26, 2023