BTC $64,357.01 +2.66%
ETH $1,800.60 +3.55%
BNB $575.87 +1.21%
XRP $1.11 +1.68%
SOL $79.27 +2.21%
TRX $0.3295 -0.30%
DOGE $0.0742 +2.68%
ADA $0.1676 -0.76%
BCH $249.19 +5.18%
LINK $7.99 +3.59%
HYPE $68.55 +2.09%
AAVE $96.21 +7.36%
SUI $0.7365 +2.30%
XLM $0.1928 +6.99%
ZEC $504.01 +8.61%
BTC $64,357.01 +2.66%
ETH $1,800.60 +3.55%
BNB $575.87 +1.21%
XRP $1.11 +1.68%
SOL $79.27 +2.21%
TRX $0.3295 -0.30%
DOGE $0.0742 +2.68%
ADA $0.1676 -0.76%
BCH $249.19 +5.18%
LINK $7.99 +3.59%
HYPE $68.55 +2.09%
AAVE $96.21 +7.36%
SUI $0.7365 +2.30%
XLM $0.1928 +6.99%
ZEC $504.01 +8.61%

慢雾余弦:Squid 安全事件问题不在私钥,而是 Safe 钱包模块存在漏洞

2026-05-26 12:51:50
收藏

ChainCatcher 消息,慢雾创始人余弦在 X 平台发文解读 Squid 安全事件,他表示抽样发现相关 Safe 钱包都是单签,owner 也都不一样,但问题不在私钥,问题在这些 Safe 地址用到的模块(SquidRouterModule)存在漏洞,攻击者可以伪造消息,轻易绕过相关验证,发起后续的兑换操作,将目标 Safe 钱包里的资金转移走。此外,余弦还公布了攻击者获利沉淀地址信息。

此前消息,某第三方 Gnosis Safe 模块在 Base 和以太坊上被利用,造成约 320 万美元损失,受害者为将该合约添加为受信任 Safe Module 的 86 个 Gnosis Safe。该合约在 Basescan 上名为 “SquidRouterModule”,随后 Squid 澄清未受 Gnosis Safe 相关漏洞事件影响。

app_icon
ChainCatcher 与创新者共建Web3世界