TechFlow reports that decentralized exchange DODO (DODO) has released an update regarding the recent attack on certain liquidity pools. The primary cause of the incident was a vulnerability in the crowdfunding pool contract's initialization function, which failed to prevent re-initialization. This allowed the attacker to reinitialize the contract and carry out the attack using flash loans. Three parties were involved in the event: one hacker and two trading bots. Approximately $3.8 million worth of funds were affected. So far, the owners of the two trading bots have returned around $3.1 million in tokens. Additionally, about $200,000 worth of funds have been frozen on centralized exchanges. The remaining loss of approximately $500,000 will be covered by the DODO team, with all funds to be reimbursed within 24 hours. Meanwhile, security firms PeckShield, ChainSecurity Chengdu, and SlowMist Technology have been invited to conduct a new round of code audits. The crowdfunding pool creation functionality is expected to resume within a week.
Navigating Web3 tides with focused insights
Contribute An Article
Media Requests
Risk Disclosure: This website's content is not investment advice and offers no trading guidance or related services. Per regulations from the PBOC and other authorities, users must be aware of virtual currency risks. Contact us / [email protected] ICP License: 琼ICP备2022009338号




