The hackers stole around 7,500 Ether, valued at over $8.1 million (approximately Rs 64.45 crore), from decentralized exchange Uniswap through a phishing attack. Spotted by several users, including Binance’s Dangerous Intelligence Department, the hacker managed to impersonate Uniswap’s website and trick a liquidity pool provider into signing malicious transactions. On its third iteration, Uniswap’s liquidity position is represented in the form of a non-fungible token (NFT), which enables users to use it as collateral to receive paid-up loans in stablecoins and blue-chip assets. makes.
Binance CEO Changpeng Zhao aka CZ initially tweeted that the platform’s threat intelligence team initially found a potential exploit on Uniswap v3 on the ETH blockchain.
One of the few tokens we listed without requiring direct contact information from the project team. This is where it would have been useful.
– CZ???? Binance (@cz_binance) 11 July 2022
In his tweet, Zhao said that the hackers have stolen 4,295 ETH so far, and that they are “laundered through Tornado Cash.” According to crypto tracking and compliance platform Mysttrack, the number of stolen ETH is currently at $7,500, which is worth around $8.1 million (approximately Rs 64.45 crore).
The Binance CEO later had to correct himself after communicating with the Uniswap team that this was not an exploit on Uniswap, but a phishing attack.
is associated with @uniswap crew. The protocol is secure.
This attack looks like a phishing attack. Both the teams responded quickly. all good Sorry for the alarm.
Learn how to protect yourself from phishing. Do not click on links. , pic.twitter.com/FIXebz3iBC
– CZ???? Binance (@cz_binance) 11 July 2022
“A phishing attack resulting in some liquidity pool NFTs being taken from individuals who approved malicious transactions,” uniswap Founder Hayden Adams later confirmed in a follow-up tweet. “Totally different from protocol. A good reminder to protect yourself from phishing and not to click on malicious links.”
This was a phishing attack that resulted in some LP NFTs being taken from individuals who sanctioned malicious transactions
completely different from protocol
A good reminder to protect yourself from phishing and not to click on malicious links https://t.co/aj3Zh8UKqF
– Hayden.eth ????? (@haydenzadams) 11 July 2022
Before Zhao alerted users via his tweet, MetaMask security analyst Harry Denly reported that a malicious token was sent to 73,399 addresses targeting his assets.
️ As of block 151,223,32, there are 73,399 addresses that have been sent a malicious token under a false belief to target their assets. $UNI Airdrop based on their LP
Activity started ~2H ago
0xcf39b7793512f03f2893c16459fd72e65d2ed00cCC: @uniswap @etherscan pic.twitter.com/5W51AikFuV
– harry.eth ???????? (whg.eth) (@sniko_) 11 July 2022
event data blockchain This was changed by scammers to make it appear that the Uniswap platform was airdropping tokens to liquidity providers.
When users linked their wallets to the contract’s website, which resembles Uniswap, their wallets were stripped of native tokens (ETH), ERC20 tokens, and NFTs (ie Uniswap LP status).