3/ Root cause is because in the internal swap() function, it will call swapUniV3() to set variable “lastCalledPool” which is at storage slot 0x00. Later on in the swap3callback function the permission check get bypassed. pic.twitter.com/LN0Ppsob9a
— Ancilia, Inc. (@AnciliaInc) April 9, 2023
Stay on top of crypto news, get daily updates in your inbox.
- SEO Powered Content & PR Distribution. Get Amplified Today.
- Platoblockchain. Web3 Metaverse Intelligence. Knowledge Amplified. Access Here.
- Source: https://decrypt.co/125799/sushiswap-smart-contract-bug-exploited-in-3-3-million-theft
- :is
- $3
- 1
- 10
- 2021
- 7
- 8
- 9
- a
- About
- Absolute
- access
- Account
- across
- activity
- addresses
- All
- analysis
- analytics
- and
- Another
- arbitrum
- ARE
- AS
- At
- available
- avoided
- because
- become
- blockchain
- Blockchain security
- Broken
- Bug
- by
- call
- Cause
- check
- CoinGecko
- community
- company
- CONFIRMED
- continued
- continuing
- contract
- contracts
- controlled
- could
- crypto
- Crypto News
- CTO
- Current
- Currently
- Cybersecurity
- daily
- Dark
- data
- Data Analytics
- Days
- Decrypt
- details
- Determine
- determined
- down
- effort
- ETH
- ethereum
- Exploit
- exploited
- Exposure
- Failure
- fill
- Firm
- flaw
- For
- found
- from
- front
- Front end
- function
- funds
- get
- Gnosis
- granted
- gray
- hack
- Hands
- hat
- Have
- head
- head chef
- help
- HOURS
- HTTPS
- identifying
- in
- Inc.
- Including
- internal
- introduced
- IT
- ITS
- known
- Late
- LINK
- Liquidity
- massive
- member
- million
- Monitor
- more
- Morning
- network
- networks
- news
- of
- on
- Optimism
- Others
- past
- Peckshield
- permission
- permissions
- PHP
- plato
- Plato Data Intelligence
- PlatoData
- Polygon
- Polygon Network
- Post
- posted
- price
- process
- prominent
- protocol
- providing
- Recommendation
- recovery
- Removed
- repeated
- rescue
- researcher
- Risk
- root
- s
- safe
- SEC
- security
- service
- set
- several
- Sifu
- since
- single
- smart
- smart contract
- Smart contract bug
- stolen
- stolen funds
- storage
- SUSHI
- sushiswap
- targeted
- that
- The
- theft
- Through
- time
- to
- token
- tool
- top
- transaction
- ui
- Updates
- User
- users
- VALIDATE
- variety
- visualization
- Vulnerable
- Wallet
- Weeks
- whether
- which
- white
- WHO
- will
- with
- working
- worth
- Your
- zephyrnet