September 30, 2023



Hackers withdrew more than $4 million from DeFi projects due to a vulnerability in ChainSwap

Hackers took advantage of a critical vulnerability in the smart contract of the ChainSwap interconnect bridge and withdrew more than $4 million from DeFi projects. To eliminate the consequences of hacking, developers will release a new version of their own token ASAP.

The ChainSwap protocol acts as a bridge between various blockchains, including Binance Smart Chain (BSC), Ethereum, Polygon and Huobi Eco Chain.

On July 10, the Wilder World NFT marketplace team noticed a glitch on the PancakeSwap platform.

The attacker withdrew more than $534,000 from the Wilder Pancake Liquidity Pool on BSC and the ChainSwap bridge contract in the Ethereum blockchain.

The developers noted that they reacted to the problem in time and prevented further spending of funds. According to them, the attack used a critical vulnerability in the ChainSwap smart contract, which allowed attackers to issue about 20 million WILD tokens directly to their address on the BSC network, and not in the main contract on the Ethereum blockchain.

Wilder World stressed that their project was “one of dozens” affected. According to a user under the nickname Krisma, the attack affected Antimatter, Razor, Unifarm and others. The hackers’ address contains tokens worth more than $4.3 million, according to Etherscan.