Li.Fi Protocol Hacked, Resulting in $10 Million Loss

Li.Fi, an API for Ethereum Virtual Machine and Solana swaps and bridging, was hacked on July 16, resulting in over $10 million in cryptocurrency being drained.

Azcnews Lifi Protocol Hacked, Resulting In $10 Million Loss

According to Cyvers, their system flagged suspicious transactions on Li.Fi involving a specific contract address.

Cyvers recommended users revoke approvals for the suspicious address: 0x1231deb6f5749ef6ce6943a275a1d3e7486f4eae

Meir Dolev, co-founder and CTO at Cyvers, emphasized the need for constant vigilance from protocols:

“Hackers can exploit these approvals to drain assets stored in the contract as well as funds in connected user wallets.”

Li.Fi Alert

In a post on X on July 16, Li.Fi warned users not to interact with applications powered by Li.Fi until further notice. During the ongoing attack, the team explained they were investigating the vulnerability and clarified that users without “infinite approvals” would not be at risk.

For users who had set up infinite approvals, the Li.Fi team advised revoking the following addresses:

  • 0x1231deb6f5749ef6ce6943a275a1d3e7486f4eae
  • 0x341e94069f53234fE6DabeF707aD424830525715
  • 0xDE1E598b81620773454588B85D6b5D4eEC32573e
  • 0x24ca98fB6972F5eE05f0dB00595c7f68D9FaFd68

At 11:44 AM ET (15:44 UTC), Li.Fi updated its users via a post on X stating that the smart contract vulnerability had been mitigated. “There is no further risk to users at this time,” the post read. “Only wallets with infinite approvals were affected, representing a very small number of users.”

$10 Million Drained

According to Cyvers, approximately $10 million in cryptocurrency was drained, also affecting the Arbitrum blockchain. Dolev remarked, “This incident underscores the inherent risks in granting wallet permissions to smart contracts.”

In an update post on X, Cyvers once again urged users to revoke the address 0x1231deb6f5749ef6ce6943a275a1d3e7486f4eae to prevent further losses.

From Drains to Flash Loan Attacks

The decentralized finance protocol Dough Finance was recently attacked on July 12, falling victim to a $1.8 million flash loan attack. Cyvers reported on the incident, explaining that the attacker financed the exploit through the zero-knowledge protocol Railgun and swapped the stolen USD Coin.

According to Web3 security provider Olympix, the vulnerability accumulated 608 ETH, valued at approximately $1.8 million, originating from unverified call data with “ConnectorDeleverageParaswap.”

Love

0.0/5

Love

Latest

Crypto Market Faces Volatility Ahead Of Trump Tariff Pause Expiration

News | Editor Choice | Policy & Regulations

Crypto Market Faces Volatility Ahead of Trump Tariff Pause Expiration

The crypto market is entering a sensitive phase as the Trump tariff pause nears its end and nearly $15 billion in Bitcoin options are set to expire, putting significant pressure on investor sentiment.

Pi Coin Faces Selling Pressure Ahead Of Pi2day

News | Editor Choice | Pi Network

Pi Coin Faces Selling Pressure Ahead of Pi2Day

Ahead of the Pi2Day event on June 28, Pi Coin is under strong selling pressure while Pi Network announces a series of new updates, including the KYC Sync feature and upgrades to the Pi Browser aimed at improving user experience and accelerating the transition to Mainnet.

Bitcoin Could Drop To $100,000 Soon

Bitcoin | Editor Choice

Bitcoin Could Drop to $100,000 Soon

Although Bitcoin has surged following the stabilization of the Middle East situation, it could still fall below the 100,000 USD mark in the near future.

Coinbase Stock Hits New High As Analysts Split On Future Rally

News | Altcoin | Editor Choice | Policy & Regulations

Coinbase Stock Hits New High as Analysts Split on Future Rally

Coinbase (COIN), the crypto exchange giant, has just set a new all-time closing high, despite growing concerns that the stock may be due for a short-term correction.

Ai Crypto App Users Double This Year

Editor Choice | Altcoin

AI Crypto App Users Double This Year

According to a report from DappRadar, there are approximately 4.5 million wallets using AI applications on the blockchain, marking an 86% increase this year.