The head of the Bitcoin exchange Binance, Changpeng Zhao, said that the site’s researchers had discovered a potentialvulnerability in the third version of Uniswap (v3). However, later it turned out that this was a phishing attack on the user, and not a protocol vulnerability.
Zhao's post stated that the attacker withdrew 4,295 ETH ($4.6 million at the time of writing) from the protocol and sent it to the Tornado Cash mixer.
PeckShield said there was an attack on its liquidity provider (LP).
One of the first to report a phishing campaignsecurity specialist Harry Denley. He noted that the attackers sent malicious tokens under the guise of an airdrop from Uniswap to more than 70,000 addresses.
Victims interested in the received tokens are redirected to a fraudulent site. Subsequently, the hackers steal the funds.
The number of affected users and the total amount of damage are still unknown.
The creator of the Uniswap protocol, Hayden Adams, confirmed that this is a phishing campaign. He advised not to click on links that could be malicious.
Changpeng Zhao said he contacted the Uniswap team and confirmed that the protocol was secure.
Some users noted that you shouldn't post unverified statements on Twitter, "especially if you have millions of followers."
Recall that in 2020, experts discovered a fake Uniswap application that was stealing cryptocurrency from users.
Read more about Uniswap in the ForkLog cards.
Read ForkLog bitcoin news in our Telegram - cryptocurrency news, courses and analytics.
Read this:
Uniswap Labs Acquires Genie NFT Marketplace and Announces Airdrop
Hackers Attack DNS Servers of Namecheap DeFi Projects
Hackers who hacked KuCoin withdraw money through UniSwap
Uniswap hit by phishing attack, more than $4.5 million lost
Uniswap launched the second version of its protocol
Hackers attacked the Bitcoin.org resource