India markets closed
  • BSE SENSEX

    48,832.03
    +28.35 (+0.06%)
     
  • Nifty 50

    14,617.85
    +36.40 (+0.25%)
     
  • USD/INR

    74.3500
    -0.4600 (-0.61%)
     
  • Dow

    34,035.99
    +305.10 (+0.90%)
     
  • Nasdaq

    14,038.76
    +180.92 (+1.31%)
     
  • BTC-INR

    4,533,044.50
    -102,520.00 (-2.21%)
     
  • CMC Crypto 200

    1,354.15
    -26.80 (-1.94%)
     
  • Hang Seng

    28,969.71
    +176.57 (+0.61%)
     
  • Nikkei

    29,683.37
    +40.68 (+0.14%)
     
  • EUR/INR

    89.0909
    -0.4928 (-0.55%)
     
  • GBP/INR

    102.4703
    -0.6659 (-0.65%)
     
  • AED/INR

    20.2530
    -0.0700 (-0.34%)
     
  • INR/JPY

    1.4603
    +0.0096 (+0.66%)
     
  • SGD/INR

    55.7640
    -0.2970 (-0.53%)
     

DeFi Transaction Batching Tool Exploited for $14M

Nathan DiCamillo
·1-min read

Decentralized finance (DeFi) application Furucombo lost $14 million after an exploiter apparently used a fake contract to trick the app into thinking it was an Aave v2 update. Furucombo later tweeted that the vulnerability had been fixed.

The exploiter used this contract to transfer approved tokens to its address, tweeted The Block Research’s Igor Igamberdiev on Saturday.

The attack also affected DeFi protocol Cream Finance’s treasury funds, taking $1.1 million, according to a tweet from the protocol’s team. 

Furucombo is a tool that allows users to bundle orders on various DeFi protocols and to send them out in one transaction.  

“We’re in the process of investigating the stolen fund and organizing the follow-up actions,” Furucombo tweeted.

Related Stories