Share this page!

DFX Finance Profile picture
Twitter logo
Nov 11 8 tweets 4 min read
1) Today we were notified about suspicious activity happening in the #DFX contracts. The attack started at Nov-10-2022 07:21:59 PM +UTC originating from wallet 0x14c19962e4a899f29b3dd9ff52ebfb5e4cb9a067.
2) We were notified of the suspicious activity within 20-30 mins of the first transaction and executed a pause on all #DFX contracts within a few minutes after confirming the attack.
3) The attacker previously held the funds in 0x14c19962e4a899f29b3dd9ff52ebfb5e4cb9a067 before converting what was available to #ETH and moving it to @TornadoCash.
4) #NZDS that did not have liquidity to convert to #ETH was bridged to Polygon and #CADC was frozen within the wallet by @PayTrie.
5) During the attack process, an #MEV bot 0x6c6b87d44d239b3750bf9badce26a9a0a3d2364e was able to extract value from the hacker and incidentally gain a large sum of the funds currently held in wallet 0xfde0d1575ed8e06fbf36256bcdfa1f359281455a.
6) We urge the #MEV bot owner to get in contact with us here on Twitter or at our Telegram and Discord.

Polygon pools were not affected as we were able to pause the contracts before the attacker made his way to the polygon side.
7) Polygon contracts are susceptible to the same attack vector and we will be initiating an emergency shut down of those pools.

We ask Polygon LP holders to withdraw funds from their respective #DFX pools once we turn on withdraw-only capabilities.
8) Stay tuned for communications on this.

We will also be issuing a full post mortem after further review with auditors and forensic analysts and provide more details at a later time.

Thank you for your patience. 💜

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with DFX Finance

DFX Finance Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

:(