BlockSec: Taiko Suspected Victim of Attack Due to GitHub Leak of SGX Attestation Key, Loses Over $1.7 Million

BlockBeats News, June 22nd - According to BlockSec monitoring, Taiko Network suffered an attack resulting in a loss of over $1.7 million. Preliminary investigations indicate that the possible root cause was the exposure of the Raiko SGX enclave signing key on GitHub. Raiko is Taiko's multi-prover stack used for Taiko and Ethereum blocks, hence the exposed Raiko SGX enclave key could directly impact Taiko's on-chain proof verification path.

With the enclave signing key being publicly accessible, the SGX prover trust model may have been compromised. The exposed key could allow an attacker to register SGX instances controlled by the attacker. Once registered, these instances can sign proof public inputs accepted by Taiko's proof validator, thereby allowing fraudulent state/signal proofs to pass through. Subsequently, the attacker utilizes forged source signals to register fake bridging messages as RETRIABLE and then calls retryMessage to trigger the ERC20Vault to release standardized L1 assets.