A SushiSwap Token launchpad dubbed MISO, recently was hacked for more than $3 million worth of Ethereum but let’s find out more in our latest ethereum news today.
The sushiSwap token launchpad called Miso was attacked a day ago with the hacker stealing more than $3 million worth of ETH in current prices. Sushiswap is one of the biggest decentralized exchanges in the world and a rival to Uniswap with about $495 million in trading volume over the past day according to CoinGecko. As described on the project’s website, MISO is an open-source smart contract that is created to ease the process of launching a new project on the Sushiswap exchange.
We have asked @FTX_Official and @Binance to turn over the attackers KYC information, but they have resisted on this time sensitive matter.
The attacker(s) has done work with @Yearn and has approached many other projects. I urge you to check your own front ends for exploits.
— Joseph 🤝 Delong 🔱 (@josephdelong) September 17, 2021
According to SushiSwap’s CTO Joseph Delong, MISO was hacked in a so-called supply chain attack which saw the anonymous contractor going under the GitHub handle AristoK3 and injected a malicious code into the platform’s front end so he was able to replace the auction wallet with its own address and the exploited NFT auction in question is car-themed Jay Pegs Auto Mart which was already patched. According to the Ethereum blockchain explorer Etherscan, identified the address shared by Delong was one of the involved in the MISO exploit as the attack occurred at 12:04 Eastern time. This is not the first time that MISO encountered a similar problem as the platform’s team got away lightly during a previous occasion.
ADVERTISEMENT
The Miso front end has become the victim of a supply chain attack. An anonymous contractor by with the GH handle AristoK3 injected malicious code into the Miso front end. We have reason to believe this is @eratos1122.
864.8 ETH was stolen, address belowhttps://t.co/cDZeBqFV4P
— Joseph 🤝 Delong 🔱 (@josephdelong) September 17, 2021
Last month, Samczsun who is a researcher for venture capital company Paradigm, discovered a vulnerability while examining the smart contract code of the BitDAO Token sale on the MISO platform. The researcher said that the vulnerability could result in a loss of $350 million. The sale concluded without any incidents and raised $365 million in the process but required the BitDAO team to manually end the token auction and neutralize the potential threat. SushiSawp claims there are reasons to believe that the hacker is a Twitter user dubbed @erators1122 who did previous work with Yearn. Finance and approached other projects. However, the Twitter profile Delong linked to shows a different GitHub handle. Delong added that sushiswap asked FTX and Binance to share the attackers’ hackers’ KYC info but they have resisted on the matter:
“I recommend that you test your own user interface in order to identify exploits early on.”
ADVERTISEMENT
- 11
- Auction
- auto
- Biggest
- binance
- blockchain
- capital
- claims
- code
- company
- contract
- Contractor
- crypto
- Crypto News
- CTO
- Current
- day
- decentralized
- DID
- discovered
- Early
- eastern
- Editorial
- ends
- ETH
- ethereum
- exchange
- Exchanges
- Exploit
- finance
- First
- first time
- Free
- FTX
- GitHub
- hacker
- HTTPS
- identify
- info
- information
- involved
- KYC
- million
- news
- NFT
- offer
- order
- Other
- paradigm
- platform
- policies
- Profile
- project
- projects
- reasons
- Rival
- sale
- set
- Share
- shared
- smart
- smart contract
- So
- standards
- stolen
- supply
- supply chain
- test
- the world
- time
- token
- Trading
- Uniswap
- us
- venture
- venture capital
- volume
- vulnerability
- Wallet
- Website
- WHO
- Work
- world
- worth
