Key Takeaways:
- Dough Finance lost $1.8 million in a flash loan attack exploiting unvalidated calldata.
- The attacker stole 608 ETH via the “ConnectorDeleverageParaswap” contract.
- Security firms Cyvers and Olympix detected the attack, with Cyvers confirming Aave pools’ safety and Olympix advising users to withdraw funds.
Dough Finance, a DeFi protocol, suffered a $1.8 million loss due to a flash loan attack that exploited unvalidated calldata.
The attacker stole 608 ETH by manipulating the “ConnectorDeleverageParaswap” contract.
🚨🚨#OlympixAlert
— Olympix (@Olympix_ai) July 12, 2024
Attention @DoughFina Users: Exploit Alert!
Dough finance has been exploited for roughly ~$1.8 million in USDC! Here's a breakdown of the situation based on available information:
❓What Happened?
The exploit stemmed from unvalidated calldata within the… pic.twitter.com/NBcCwsMl10
Web3 security firms Cyvers and Olympix detected and analyzed the attack.
Cyvers confirmed that Aave pools were safe, while Olympix advised Dough Finance users to withdraw their funds and avoid the protocol until the issue is resolved.
This incident contributes to the over $1 billion in digital asset losses reported in 2024 due to various security incidents, including phishing and private key compromises.
About The Author
Efe Bravo, a seasoned journalist, delivers compelling insights into the cryptocurrency and blockchain industry.
His articles offer a deep dive into the latest trends, projects, and technological advancements shaping the future of digital finance.
Check Efe out on:
