Decentralized cryptocurrency trading platform SushiSwapwas damaged by an anonymous person known on social media. Cyber attacker 0xsifu exploited a flaw in the platform and moved $3.3 million worth of cryptocurrencies into their own accounts.
Blockchain security researcher PeckShield explains that the vulnerability in the DeFi platform RouteProcessor2 He found that 1,800 Ethereums disappeared from the exchange.
It seems the @SushiSwap RouterProcessor2 contact has an approve-related bug, which leads to the loss of >$3.3M loss (about 1800 eth) from @0xSifu.
If you have approved https://t.co/E1YvC6VZsP, please *REVOKE* ASAP!
One example hack tx: https://t.co/ldg0ww3hAN pic.twitter.com/OauLbIgE0Q
— PeckShield Inc. (@peckshield) April 9, 2023
Web3 Ancilia, a company that carries out cyber security studies in the field of cyber security, went into the details of the cyber attack. Ancilia identified exactly where the error was and notified SushiSwap officials.
According to the cybersecurity initiative, there is a problem with the “internal swap” part of the SushiSwap codes.
Statement from SushiSwap CEO!
After the hacker incident, SushiSwap chief executive Jared Gray made a series of statements on Twitter.
Retweeting PeckShield’s post and confirming the event, Gray stated that users should immediately cancel the smart contract named RouteProcessor2.
Sushi’s RouteProcessor2 contract has an approval bug; please revoke approval ASAP. We’re working with security teams to mitigate the issue. https://t.co/WhXJfa5xD4
— Jared Gray (@jaredgrey) April 9, 2023
Gray recommended the application called Revoke to users for contract cancellation.
For exclusive news, analytics and on-chain data Telegram our group, twitter our account and YouTube Follow our channel now! Moreover Android And iOS Start live price tracking right now by downloading our apps!