The team of the DeFi project SushiSwap has identified and fixed a vulnerability that has allowed an attacker to withdraw $10,000-15,000 from the decentralized protocol.
The vulnerability has been discovered by the developer of the project 0xMaki. According to him, the attacker carried out the first micro-transaction 2-3 days ago, and put them into operation yesterday. 0xMaki admits he denied the attack at first, however, he later realized the attacks had been carried out by an unusual user.
As 0xMaki explained, the amount stolen was not too high due to the fact that the attacker targeted the commissions the platform participants receive, which do not exceed $20,000-30,000 per day. The stolen funds will be returned to users from the project fund. 0xMaki has written:
"I am very impressed! I am concerned about all these hacks/exploits that occur even in spite of reliable audits. There is always a scenario that we could not foresee. This makes the ecosystem more resilient and stronger."
The developer has even said the attacker deserves the money he has stolen as a reward for identifying the vulnerability.
According to 0xMaki, the attacker did not create a special account for the hack, but used a personal wallet. This has made it possible to establish that he owns Synthetix (SNX) and ETH tokens.
If you are looking for a crypto trading platform to trade your assets, visit Gozo.pro, a safe and reliable exchange.
Subscribe to our Telegram channel to stay up to date on the latest crypto and blockchain news.