Logo
CryptoFindHere Audience
Home Crypto Security defi platform cow protocol loses over 550 bnb in contract exploit

defi platform cow protocol loses over 550 bnb in contract exploit

defi platform cow protocol loses over 550 bnb in contract exploit
Crypto Security
Like? Do Rank It! Likes

The Decentralised Finance Protocol Cow Swap (Defi) underwent an intelligent contract operation, leading to a loss of about 551 nbp ($181,600).

Reports indicate, the attacker has added a portfolio address as a cow swap "resolver" and invoked a transaction to approve dai to swapguard transfers before moving the assets to other addresses.

A Settlement Contract Exploit

Blockchain surveyor MevRefund first noticed the attack in the early hours of today. The maximal extractable value (MEV) searcher tweeted that CoW Swap’s funds were being moved, adding that the protocol’s SwapGuard feature had been granted allowance and allowed anyone to make “arbitrary function calls.”

Within an hour, blockchain security firm PeckShield revealed that CoW Swap’s GPv2Settlement contract was tricked ten days ago, approving SwapGuard for DAI spending.

At the time of operation, the attacker has just activated the swap guard to transfer dai out of the gpv2settlement settlement agreement.

In further detail, blockchain security platform blocksec revealed that the attacker had added a portfolio address as a protocol resolver through the multiig, hence, Ability to approve deals. As the transfer of case was approved from the settlement agreement, the operator was also able to approve the transfers to arbitrary addresses.

“A lesson learned. An arbitrary call interface contract should not have compensation, 0x55a37a2e5e5973510ac9d9c723aec213fa161919. made the mistake and approved the maximum value of DAI to SwapGuard, which is the root cause of the attack,” BlockSec said.

Over $181k Moved to Tornado Cash

Tokens transferred to the exploiter’s address include BNB, USDT, USDC, and ETH. To date, approximately 551 ETNs valued at more than $181,000 have been transferred to a crypto blender sanctioned by OFAC Tornado Cash.

CoW Swap urged users not to worry, as the stolen funds were CoW Protocol’s accumulated fees from the past week. The platform stated that the problem has been alleviated and is currently being investigated.

The Cow Protocol is the latest challenge platform to endure at the hands of bold hackers this month. CryptoPotato reported last week that Orion Protocol and BonqDAO were hacked, leading to the loss of $3 million and $10 million, respectively.

07.02.2023
Crypto Security Recent Posts
Coinbase Abruptly Lists Newly Launched Ethereum-Based AI Altcoin Project
2 days ago
Coinbase Abruptly Lists Newly Launched Ethereum-Based AI Altcoin Project
 
Crypto Airdrops Fail to Improve GameFi Experiences
3 days ago
Crypto Airdrops Fail to Improve GameFi Experiences
Magic Eden Debuts Runes and Base
4 days ago
Magic Eden Debuts Runes and Base

Most Popular in Crypto Security newsmore Crypto Security

Bitcoin Slides Under $40,000 Triggering $230 Million In Liquidations
bitcoin bybit gbtc
13 weeks ago
Bitcoin Slides Under $40,000 Triggering $230 Million In Liquidations

Cryptic Tweets from Major Exchange Get Ripple (XRP) Users Excited: Details
13 weeks ago
Cryptic Tweets from Major Exchange Get Ripple (XRP) Users Excited: Details

Bitcoin ATM Vulnerability Could Have Given Hackers "Total Control"
13 weeks ago
Bitcoin ATM Vulnerability Could Have Given Hackers "Total Control"
Coinbase Blasts U.S. GAO For Claiming Crypto Can Help Dodge Sanctions
13 weeks ago
Coinbase Blasts U.S. GAO For Claiming Crypto Can Help Dodge Sanctions
‘Cherry Picking’ Crypto Scammer Receives Two-Year Prison Sentence
13 weeks ago
‘Cherry Picking’ Crypto Scammer Receives Two-Year Prison Sentence
ETF Anticipation Ends in ‘Sell-the-News’ Slump for BTC, ETH Sees a Notable Boost: Glassnode
13 weeks ago
ETF Anticipation Ends in ‘Sell-the-News’ Slump for BTC, ETH Sees a Notable Boost: Glassnode
Could Bitcoin Mining Companies Face Threats From the Failure of This Crypto Bank?
13 weeks ago
Could Bitcoin Mining Companies Face Threats From the Failure of This Crypto Bank?

Latest Stories