The exactInputV3Swap function of Transit Finance was attacked due to the lack of legal verification of the pool input.

12/20 07:28

Wechat scan to share

Beosin's EagleEye security risk monitoring, warning and blocking platform has detected an attack on the Transit Finance project. Beosin's security team analyzed and found that the exactInputV3Swap function in Transit Finance's SwapRouter was attacked due to a lack of valid input verification for the pool, which allowed the attacker to control the actualAmountIn in the first exchange by passing a fake pool and WBNB/BUSD pool path in the 0x93ae5...6de1081 transaction. This caused the SwapRouter to use the fake actualAmountIn as the initial value for the exchange in the WBNB/BUSD pool, resulting in the theft of BUSD from the SwapRouter.

Comments

All Comments

Recommended for you

TronBank.Pro · 04/28 09:41

TronBank.Pro: Born from the Flourishing TRON Ecosystem and the "Resource Dilemma"

This article analyzes TronBank.Pro's emergence and core functions. To address TRON's resource efficiency challenges, TronBank.Pro offers energy leasing, TRX staking, and plans a UCard, building a sustainable DeFi ecosystem.
Kevin Helms · 04/28 08:57

Bitcoin's Bull Run Reloads: Analyst Expects BTC to Break All-Time Highs

Bitcoin is set to break all-time highs as a top analyst sees surging inflows, strong fundamentals, and soaring investor confidence driving a massive rally.
bitcoin.com · 04/28 03:56

Grayscale Pushes SEC to Approve Ethereum ETF Staking, Citing $61M Lost in Rewards

Grayscale is urging the SEC to approve staking for Ethereum ETFs, unlocking millions in rewards, strengthening Ethereum’s network, and propelling U.S. crypto investment forward.
Sebastian Raschka · 04/28 03:54

Grayscale Still Tops All US Spot Bitcoin ETFs in Revenue

Despite heavy outflows since January 2024, GBTC’s 1.5% fee still generates $268 million a year, outpacing rivals' combined $211 million.
Decrypt · 04/28 02:50

Bitcoin on the Rise as China Tariff Exemptions Give Stocks Relief

Bitcoin hit a two-month peak Friday as investors mulled Donald Trump's purported progress on trade negotiations with China.
Ciaran Lyons · 04/27 08:14

US crypto rules like 'floor is lava' game without lights — Hester Peirce

SEC Commissioner Hester Peirce said that to engage in crypto activities, “SEC-registrants have had to hop from one poorly illuminated regulatory space to the next.”
Biraajmaan Tamuly · 04/27 08:07

Bitcoin trades at ‘40% discount’ as spot BTC ETF buying soars to $3B in one week

Data shows Bitcoin price is 40% undervalued, and the sharp uptick in spot BTC ETF purchasing suggests that institutional investors agree.
cointelegraph · 04/27 04:54

US crypto rules like 'floor is lava' game without lights — Hester Peirce

SEC Commissioner Hester Peirce says that, like the “floor is lava” game, the goal for SEC registrants in today's uncertain environment is to “never touch any crypto asset.”
Helene Braun · 04/25 09:55

SoftBank Is Buying Bitcoin Again, After $130M Loss in 2018. Is This Time Different?

SoftBank returns to crypto years after founder Masayoshi Son lost $130M on bitcoin.
James Van Straten，cryptoslat · 04/25 09:53

ARK Invest Raises 2030 Bitcoin Price Target to as High as $2.4M in Bullish Scenario

Falling bitcoin exchange balances signal strong holder sentiment as bitcoin hovers around $94,000.