An attacker drained greater than $2.1 million from Aztec Join on June 14 by exploiting a flaw within the platform’s proof verification logic.
Blockchain safety agency CertiK flagged the suspicious transaction on X (previously Twitter).
Aztec Join Exploit Nets Attacker $2.1 Million
CertiK stated the exploit seems to stem from incomplete validation of submitted proof information. In response to the safety agency, one contract operate verified solely the start of the proof, whereas token switch directions embedded elsewhere within the information might not have been correctly checked. This doubtlessly allowed the attacker to control withdrawals and drain roughly $2.19 million.
Comply with us on X to get the most recent information because it occurs
The Aztec Basis stated it was notified of a possible exploit involving Aztec Join. The staff burdened that the incident doesn’t have an effect on the AZTEC ERC-20 token or any sensible contracts related to the present Aztec community.
The muse famous that Aztec Join was deprecated three years in the past. Thus, Aztec Labs not has any management over the system.
Aztec Labs additionally confirmed an energetic investigation. Nevertheless, the staff stated it has no approach to step in.
“Aztec Labs holds no admin keys or management over the system; it can’t be paused or upgraded by us,” the put up learn.
The incident got here simply days after a separate exploit on Raydium (RAY). The incident resulted within the lack of roughly $1.3 million after attackers drained 5 legacy liquidity swimming pools on the Solana (SOL) community.
The assault provides to the rising checklist of exploits recorded this month, which have collectively resulted in losses of roughly $43.93 million, in keeping with DeFiLlama.
Subscribe to our YouTube channel to look at leaders and journalists present professional insights
The put up Attacker Drains $2.1 Million From Aztec Join 3 Years After Its Shutdown appeared first on BeInCrypto.