The Platypus Finance protocol was hacked for $2 million


DeFi project Platypus Finance on the Avalanche network fell victim to an attack, losing about $2 million in digital assets. PeckShield analysts were the first to notice this.

After the hack was reported, the project temporarily stopped all liquidity pools “due to suspicious activity.”

The attacker likely used an instant loan exploit targeting AVAX-sAVAX pools. There have been no official comments about the vulnerability yet.

Platypus was already subject to an attack in February of this year, as a result of which an unknown person withdrew assets worth $8.5 million. In addition, the stablecoin of the USP project lost its peg to the dollar after the hack.

The team reported that the hacker took advantage of an instant loan and a logical error in the solvency check mechanism in the collateral contract. French police later detained suspects in the attack.

Funds in the Platypus main pool covered approximately 35% of user deposits. Developers are still paying compensation for the “stable coin” that has lost its peg. In total, they returned about $1.3 million.

According to Immunefi, in the third quarter, industry losses from hacking and fraud reached $685.5 million – 59.9% more than in the same period last year.

Let us recall that in October, the Stars Arena Web3 application on the Avalanche network lost 266,103 AVAX (~$3 million at the time of the attack) due to a “serious security breach” in smart contracts.

Found an error in the text? Select it and press CTRL+ENTER

ForkLog newsletters: keep your finger on the pulse of the Bitcoin industry!

Leave a Reply