Hackers have launched attacks on the Uniswap v3 protocol using sophisticated ‘phishing’ techniques. More than $ 8 million in ETH is believed to have been lost so far in the attack.
Metamask security analyst Harry Denley was the first to detect the incident. He observed that a ‘problem token’ known as “UniswapLP” was sent to 73,399 different addresses. The tokens target user assets through fake UNI airdrops.
The fake tokens sent to the victims were seen to come from a valid “Uniswap V3: Positions NFT” contract by manipulating blockchain transactions. Websites hosted by hackers will be able to capture sensitive user information and steal funds from victims ’wallets.
The entity behind the attack is believed to be part of previous attacks which this time has targeted about 73,399 addresses by sending fake tokens that have bugs.
Binance CEO Changpeng “CZ” Zhao speculated that nearly $ 4.7 million worth of Ether had been lost in the attack. However, crypto tracking and compliance platform MistTrack revealed a total of 7,500 ETH stolen funds (about $ 8.1 million), which were then laundered through Tornado Cash’s crypto mixing service in 100 transactions.
The creators of Uniswap Labs confirmed that the hackers managed to disguise themselves as the official website and trick the LP provider into signing the transaction. Web2 -style attacks such as phishing campaigns are still continuing to wreak havoc in the Web3 landscape. Previously the same fate befell Stepn, a Solana -based Web3 lifestyle app.
Based on a new report from CertiK that ‘phishing’ attacks have increased by 170% since the last quarter.It also highlights that social media platforms have emerged as targets for Web3 projects.
