ChainCatcher reports that sDOLA LlamaLend was subjected to a flash loan price manipulation attack, resulting in a loss of approximately $240,000, including 6.74 WETH and 227,325 DOLA.
The attacker used flash loans and donations to manipulate the sDOLA price, raising the exchange rate from 1.189 DOLA to 1.353 DOLA per 1 sDOLA. This price fluctuation caused multiple accounts in the crvUSD Controller to have health factors below 0, triggering liquidation conditions. After the attack contract received rewards as a liquidator, it exchanged assets, repaid the flash loan, and profited.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Compound official website hacked again: Phishing site disguises attack on DeFi lending platform, raising security concerns
DeFi lending protocol Compound Finance recently experienced a security incident, with users reporting that its official website was redirected to a phishing page. Attackers used domain spoofing to carry out the attack. Although no funds were lost, this is the second similar incident Compound has faced in the past two years. Security experts stated that the automation of phishing tools increases the risk of attacks. The ongoing issues facing Compound are undermining market confidence, and front-end security and governance transparency are becoming key factors for its long-term development.
GateNews1h ago
Beware of crypto scams: Political organizations report impersonators soliciting Bitcoin and Ethereum donations related to Iran issues
The Russian "All-Russian People's Front" warns that scammers are forging donation documents to induce supporters of Iran to donate cryptocurrencies, claiming that the funds will be used to aid Ukrainian soldiers. The organization reiterates that all crypto fundraising activities in its name are scams, and legitimate donations can only be made through official website bank transfers. Meanwhile, Russian security agencies are stepping up efforts to combat related criminal activities. Cryptocurrencies are becoming increasingly important in the political and military funding flows in the Middle East, posing new security challenges for users.
GateNews1h ago
The BSC chain MT token purchase restriction mechanism has a flaw, allowing hackers to arbitrage approximately $242,000.
Gate News reports that on March 10, BlockSec detected a suspicious transaction targeting the MT-WBNB liquidity pool on BSC, resulting in a loss of approximately $242,000. The attack exploited a flaw in the buyer restriction mechanism, allowing the attacker to bypass restrictions via a router and sell MT for profit, leading to the loss of funds.
GateNews3h ago
South Korea's National Tax Service shows mnemonic phrases, 4.8 million USD worth of cryptocurrency stolen! The thief returned it only to steal it again
South Korea's National Tax Service accidentally leaked cryptocurrency seed phrases, leading to assets worth approximately $4.8 million being stolen. The first thief surrendered and returned the assets, but they were stolen again by others. Experts criticized the National Tax Service for not taking necessary protective measures, and authorities admitted the mistake and promised to strengthen security systems.
CryptoCity4h ago
Cosmos discovers security vulnerability affecting some EVM Stack blockchains, Saga has released a patch
Gate News Announcement, March 10th, Cosmos Labs disclosed that a security vulnerability has been recently discovered, affecting some blockchains built on the Cosmos EVM Stack. This vulnerability has impacted Layer 1 blockchains in the production environment.
GateNews5h ago
Bing AI search results poisoned, malicious OpenClaw installer stealing confidential information
Slow Mist Technology warns that attackers are poisoning Bing AI search results to promote fake OpenClaw installers, tricking users into downloading malware. Attackers are using GitHub to create fake repositories, simply hosting malicious code on the platform to contaminate search results. On Windows and macOS, the malware employs specific intrusion methods and can steal sensitive information. Users should avoid downloads from unknown sources and stay vigilant.
MarketWhisper5h ago
