The DPC token contract was hacked, resulting in losses of over $100,000

According to Chain Catcher news, monitoring by the Beosin EagleEye platform shows that the DPC token contract has been hacked, resulting in a loss of approximately $103,755.

The Beosin security team analyzed and found that the attacker first utilized the tokenAirdop function in the DPC token contract to prepare for meeting the reward claim conditions. Then, the attacker exchanged USDT for DPC tokens, added liquidity to obtain LP tokens, and then mortgaged the LP tokens in the token contract. The earlier preparation was to meet the reward claim conditions. The attacker then repeatedly called the claimStakeLp function in the DPC token to claim rewards. Because of the "ClaimQuota = ClaimQuota.add(oldClaimQuota[addr]);" in the getClaimQuota function, the rewards could accumulate continuously. Finally, the attacker called the claimDpcAirdrop function in the DPC contract to withdraw the rewards (DPC tokens) and exchanged them for USDT to exit. The stolen funds are still stored in the attacker's address, and the Beosin security team will continue to track them.