The Debank plugin wallet Rabby was attacked, and the official reminds users to revoke authorization

2022-10-11 21:16:52

Collection

ChainCatcher news, DeBank plugin wallet Rabby tweeted that its Rabby Swap smart contract has a vulnerability, urging users to revoke all Rabby Swap approvals on the chain. The team is currently working on resolving the issue.

According to monitoring by the Supremacy security team, on October 11, an attacker (address starting with 0xb68755) initiated multiple abnormal transactions on the chain. Analysis shows that this address repeatedly called the function of the Rabby Swap Router contract 0x32854cc2, allowing the attacker to steal specific tokens that designated users had authorized to the Rabby Swap Router by carefully setting the parameters.

The attacker's address is 0xb687550842a24D7FBC6Aad238fd7E0687eD59d55, and they have stolen user assets across multiple chains (ETH, BSC, Polygon, FTM, Optimism, Arbitrum, Avalanche), currently profiting over $160,000 in assets. Users need to promptly revoke the authorizations for the related address. (source link)

Related tags

Debank Rabby wallet

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.