The vaults.sx hack that led to 1,180,142.5653 EOS (~13M USD) and 461,796.8968 USDT stolen has been the the biggest hack on EOS to date.

To avoid this kind of bug in the future, EOSIO developers should be careful that a flow interruption doesn’t interfere in the middle of a state update that an attacker can control.

These are the resources I have found so far on the EOS SX vault re-entrancy attack that occurred on May 2021.

• EOS Costa Rica’s Analysis of the Vulnerability

• CMichael on EOS vaults.sx hack

• EOSIO contract security cookbook

• EOS Nation’s Retrospective

We hope you find this information useful .

What other steps can help avoid these attacks in the future?

Please share any other thoughts or resources