====== Reentrancy Attack ======
[[dido:public:ra:xapend:xapend.a_glossary:start| Return to Glossary ]]

**Reentrancy Attack** occurs when
the attacker drains funds from the target by recursively calling
the target’s withdraw function. When the contract fails to
update its state, a victim’s balance, prior to sending funds,
the attacker can continuously call the **''withdraw''** function to
drain the contract’s funds. A famous real-world Reentrancy
attack is the [[dido:public:ra:xapend:xapend.a_glossary:t:the_dao]] attack, which caused a loss of 60 million US dollars.

Source: [[https://arxiv.org/pdf/2105.02881.pdf ]]


/**=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
/* To add a discussion page to this page, comment out the line that says 
  ~~DISCUSSION:off~~
*/
~~DISCUSSION:on|Outstanding Issues~~
~~DISCUSSION:off~~