- Websites often use GTM scripts to collect and record information about their visitors.
- Prior to the patch, the hacker made four transactions totaling $265,000 worth of tokens.
Decentralized exchange KyberSwap (DEX) has become the latest DeFi initiative to come under attack, following the Curve Finance vulnerability last month. The liquidity protocol that is based on it KyberSwap Internet-based Kyber acknowledged the allegations on Friday and said the attack on its website was detected and fixed within a few hours.
1/ ❗️ KyberSwap Frontend Exploit Notice:
We identified and neutralized an exploit on the KyberSwap front-end. Affected users will be compensated. We have summarized the details in this topic ⬇️
– KyberNetwork September 1, 2022
According to the company’s statement, the criminals gained access to the app’s front end by exploiting a vulnerability in the Google Tag Manager (GTM) script.
Correction is too late
Websites often use GTM scripts to collect and record information about their visitors. Hackers forced consumers to accept their payments before sending them to the hacker’s address using malicious script injected via GTM. Prior to the correction, the hacker made four transactions totaling $265,000 of Aave Matic USDC (AMUSDC) tokens.
So far, Aave has been implemented on Ethereum And many other blockchains, including Polygon. The aforementioned token is Aave Polygon’s USDC-integrated stablecoin. Users get an interest token when a token of this type is placed on the lending platform. The copy that hackers stole on Friday is the copy that accrued interest.
Kyber recommended that all users verify their consent using the polygonscan consent feature by block explorer. Keeper’s network promised the hackers a $40,000 reward – 15 percent of what they stole – if they could return the money. The remainder of the payment is sent to the wallet address assigned to the company.
The crypto sector has been hacked time and time again. Hackers find unique ways to exploit the platforms and often do not return the stolen money despite the reward.
Recommended for you:
Kyber Grid Crystal Steps In Green With 30% Increase
#KyberSwap #hit #Frontend #Exploit #lost