Multichain asks users to revoke approvals amid ‘critical vulnerability’
Multichain is asking users to revoke approvals to protect their assets amid a vulnerability that is currently being exploited. Cross-chain router protocol Multichain (formerly Anyswap) urges users to revoke approvals for six tokens to avoid loss due to a “critical vulnerability” that is currently being exploited by malicious individuals.Users who approved WETH, PERI, OMT, WBNB, MATIC and AVAX on the Multichain platform are now at risk, experts warn. To avoid loss, the Multichain team advises users to cancel all of the approvals given to the specified tokens so that they can protect their....
Related News
Multichain users have lost over $3 million due to an unsolved security vulnerability that appeared in six supported tokens on Jan. 17. Hackers have continued to exploit a critical vulnerability in the cross-chain router protocol (CRP) Multichain that first appeared on Jan 17.Earlier this week, Multichain urged users to revoke approvals for six tokens to protect their assets from being exploited by malicious individuals. However Multichain's announcement on Jan. 17 encouraged more hackers to try the exploit. One stole $1.43 million, another offered to return 80% while keeping the rest as a....
The cross-chain router protocol recovered nearly 50% of the total stolen funds and devised a compensation plan for eligible investors. After a month-long fight against an ongoing exploit, cross-chain router protocol Multichain announced the recovery of nearly 50% of the total stolen funds, worth nearly $2.6 million of cryptocurrencies. The team has also released a compensation plan to reimburse the users’ losses.On Jan. 10, blockchain security expert Dedaub alerted Multichain about two vulnerabilities in its liquidity pool and router contracts — affecting eight cryptocurrencies including....
The platform asked users to revoke token approvals for smart contracts in several blockchains, including Ethereum and BSC. Interoperability protocol Celer Network (CELR) has asked its users to revoke the approval for several contracts after shutting down its cBridge over a suspected DNS hijacking. According to the project's initial analysis, there was some suspicious DNS activity at around 7 PM (UTC) on Aug. 17. However, the platform is still trying to investigate and know more about the issue at the time of writing. Meanwhile, as the platform continues to pinpoint the problem, the team....
PRESS RELEASE. EverRise, a leading web3 security and infrastructure platform, has released EverRevoke. The newest addition to the EverRise Ecosystem is a utility to review and revoke token and NFT approvals from a single place across multiple blockchains. EverRevoke supports five blockchains: Ethereum, BNB Chain, Polygon, Avalanche, and Fantom.
Token approvals are an often overlooked vulnerability in decentralized finance. EverRise developed EverRevoke not only to provide a solution to revoking active permissions but also to bring awareness to the potential problem. With DeFi....
Owing to a security vulnerability in six tokens, Multichain users lost more than $3M over the week. A white hat hacker returned 322 ETH, but in excess of 527 ETH is still exploited. In a dramatic twist, one of this week’s Multichain hackers has returned 322 ETH ($974,000 at the time of writing) to the cross-chain router protocol and one of the affected users.However the hacker kept 62 ETH ($187,000) as a “bug bounty”, and a total of 528 ETH (worth $1.6M) remains outstanding after the exploits. Earlier this week, news emerged of a security vulnerability with Multichain relating to the....