Attacker drains $1.4 million from CUT token pools via mysterious unverified contract
An account used an unreadable function to remove 1.4 million BSC-USD without needing to burn the equivalent LP tokens. Go to Source
Exploit
Auto Added by WPeMatico
Weekend Wrap: Google sued over $5M scam app, Malaysia nabs illegal miners and more
Google allegedly dragged its feet when taking down a crypto scam app, allowing the app to do over $5 million in damage, according to a proposed lawsuit. Go to Source
Ronin bridge hack caused by error in upgrade deployment script — Verichains
The upgrade deployment script failed to call an important initialization function, leaving the vote threshold at zero and allowing anyone to withdraw ‘without signature.’ Go to Source
Euler announces 29 audit reports after $4M spent to shore up security
Some vulnerabilities in Euler v2 were found and resolved, and a subsequent $1.25 million bug bounty contest found no vulnerabilities of medium or greater severity. Go to Source
Convergence congratulates attacker, attempts to open negotiations
The Convergence team posted a message to the Ethereum network, stating it believes the attacker ‘acted as a white hat.’ Go to Source
Ronin ‘white hat’ attacker returns $10M in ETH after apparent accidental front-run
The MEV bot returned nearly all of the funds, and the team claimed that $500,000 was being paid to it as a bounty. Go to Source
Weekend Wrap: Crypto VC scores TKO, Trump speech reacts, and more
Ava Labs’ vice president of engineering moves on, Nic Carter wins an MMA fight, and Trump’s pro-Bitcoin stance at the 2024 conference sparks reactions. Go to Source
Rho Markets Pauses Platform After Attacker Siphons $7.6 Million in Digital Assets
The digital asset security platform Cyvers Alerts disclosed on July 19 that Rho Markets’ liquidity layer on Scroll had been exploited after hackers took control of an oracle access control. Cyvers reported that the attacker held $7.6 million across multiple chains, with USDC and USDT pools among the affected assets. Shortly after detecting unusual activity, … Read more
Liminal blames compromised WazirX devices for hack, claims UI not responsible
Compromised WazirX devices provided “legit transaction details” to Liminal’s network, allowing the attacker to drain the exchange’s funds, the MPC provider claimed. Go to Source
Lifi Finance Hit by $8 Million Exploit, Warns Users to Avoid Applications
According to reports, the decentralized finance (defi) protocol Lifi Finance experienced an $8 million loss due to an exploit. Lifi confirmed the breach on X and advised users to avoid interacting with Lifi-powered applications. Lifi Finance Loses $8 Million to Exploit On Tuesday, the onchain security firm Peckshield revealed that Lifi Finance had been compromised, … Read more
