TechFlow news, December 16: PRISM, a transaction aggregator on Solana, announced on Twitter that an address starting with AgJddD on Solana is using the admin wallet as the signer to withdraw liquidity from Raydium pools without holding or burning LP tokens. PRISM has warned users to promptly withdraw their liquidity from Raydium. Some of the stolen funds have already been bridged to Ethereum and swapped for ETH, with the attacker's Ethereum address now holding over $2 million worth of ETH.
In response, Raydium stated it is investigating the vulnerability affecting its liquidity pools. The preliminary assessment indicates that the attacker has taken over owner privileges, but AMM and farming program permissions have now been disabled.




