ParaSwap will return funds to users after the vulnerability is detected

[Teacher]

The aggregator of liquidity from decentralized exchanges ParaSwap began to return cryptocurrency to users after fixing a critical vulnerability in the recently launched Augustus v6 smart contract.

White hack recovery update: Assets have been returned to wallets which have revoked their permissions

If your wallet had assets transferred to 0x66e90d840d7c4f3473e25dd8ca361747058c6db0 and have not received them yet, your wallet is still vulnerable, PLEASE REVOKE ALL RELEVANT… https://t.co/zraj3tSFNe
— ParaSwap (@paraswap) March 24, 2024

https://twitter.com/i/web/status/1771964824542441528

According to the platform, 213 addresses have not yet revoked their permissions.

On March 20, the ParaSwap team announced that it had discovered a vulnerability in the smart contract, but responded to the incident in a timely manner.

We discovered a critical vulnerability affecting users who approved the Augustus V6 contract.

We took immediate action by pausing the V6 API and conducting a white hack that secured funds for users who were at risk. These funds are now securely held in a Safe Wallet…
— ParaSwap (@paraswap) March 20, 2024

https://twitter.com/i/web/status/1770313086072742263

"We took immediate action by suspending the V6 API and performing a 'whitelist' that ensured the security of funds for users who were at risk. These funds are now securely stored in a secure wallet, " representatives of the liquidity aggregator said.

ParaSwap reported on cooperation with law enforcement agencies. The project team added that they initiated a contact to identify the addresses of hackers, calling for the return of stolen funds.

If the attacker does not respond by March 27, ParaSwap will "use all criminal, legal and administrative means" to recover the assets.

The amount of damage was not very significant due to the quick reaction of developers, several users lost a total of about $24,000.