Beosin Alert monitoring and warning discovered that the cross-chain protocol LI.FI was attacked. The main attacker used the call injection of the project contract to transfer the authorized user's assets to the contract. Beosin Trace tracked the stolen funds and found that the loss amount was approximately 6.3359 million USDT, 3.1919 million USDC, and 0.1695 million DAI, or about 10 million US dollars. The attack occurred on two chains, ETH and Arbitrum. Currently, most of the funds have been transferred to ETH with no new developments. Beosin has added the hacker's related address to the KYT blacklist and will continue to track and monitor the situation.