8ight Finance: Admin key compromise — private key shared via Facebook chat and Google Drive → treasury drain
8ight Finance, an OHM-fork on Harmony, lost $1.75M when a treasury private key shared via Facebook chat and Google Drive was compromised — exactly seven weeks after launch.
Summary #
8ight Finance suffered a OHM-fork / Reserve Currency on 2021-12-07, resulting in a loss of approximately $2M.
What happened #
8ight Finance, an OHM-fork on Harmony, lost $1.75M when a treasury private key shared via Facebook chat and Google Drive was compromised — exactly seven weeks after launch.
Linked factors #
- RD-F-004 — causal : Audit count likely 0; floor display [via dashboard_risk_factors/Vulnerability in audited or unaudited code: Unaudited]
- RD-F-006 — causal : Audit-deploy gap — alternate field name [via dashboard_risk_factors/Code newly deployed/upgraded?: No recent changes]
- RD-F-007 — related : Bug bounty absent — baseline integrity gap [via dashboard_risk_factors/Bug bounty: None]
- RD-F-076 — related : Protocol age (Cat 5 — < 6 months age signal) [via dashboard_risk_factors/Protocol age: ~7 weeks (launched October 2021; exploited December 7, 2021)]
- RD-F-126 — causal : Is-a-fork-of (Cat 8 anchor) [via dashboard_risk_factors/Forked?: Yes — Olympus DAO fork]