March 28, 2024

Uniswap Lost $4.7M ETH in a Cyber ​​Attack

Article Reading Time:
2 minutes.

Uniswap Lost $4.7M ETH in a Cyber ​​Attack

The Uniswap v3 protocol has encountered a phishing attack aimed at collecting personal data to steal cryptocurrency from users' wallets. As a result, the hacker stole $4.7 million worth of ETH.

Yesterday, July 11, security expertMetaMask Harry Denley was the first to report on Twitter that during a cyberattack, a criminal sent malicious tokens to 73,399 Uniswap user addresses to steal assets. The phishing attack was based on sending users a “UniswapLP” token disguised as a “Uniswap V3: Positions NFT” contract.

Interested users followedlink to a fraudulent website that allegedly allows you to exchange new tokens for a Uniswap UNI token worth $5.34. However, instead of converting, the malicious site copied and sent the address and client information from the user’s browser to the command center of the attackers, who stole cryptocurrency from users’ wallets.

Maximum attention to the Uniswap incidentattracted Binance CEO Changpeng Zhao. He called the cyberattack a “potential exploit” of the Uniswap protocol and clarified that at least $4.7 million in ETH was stolen as a result of the hack. At the same time, many participants in the crypto community believe that losses could be much greater. 

Zhao then, after talking with the Uniswap team, debunked his hypothesis, saying it was a phishing attack and not a protocol issue:

“The protocol is secure.The attack looks like a phishing attack. Both teams responded quickly. Everything is fine. Sorry for the trouble. Learn to protect yourself from phishing. Do not click on links,” Zhao wrote on Twitter.

However, Internet service provider AtlasVPN believes that the Cardano blockchain, amid the desire to push Ethereum out of the market, is becoming an attractive target for phishing. According to experts, Cardano users are more likely than others to be subject to such attacks.