Flow: The execution layer was attacked, resulting in approximately $3.9 million in asset outflow, but user funds are safe

Flow's official post on the X platform stated that attackers exploited a vulnerability in the Flow execution layer to transfer approximately $3.9 million in assets before the network went down. This attack did not access users' existing balances, and all user deposits are safe.

Currently, approximately $3.9 million in funds have mainly flowed out through bridges such as Celer, Debridge, Relay, and Stargate. The attacker's wallet has been identified and flagged, and their money laundering activities through Thorchain and Chainflip are being tracked in real-time. The Flow Foundation has submitted freeze requests to Circle, Tether, and major exchanges.

The network is currently down to cut off all exit paths, and a fix is undergoing final verification. The target restart time is within 4 to 6 hours, depending on the results of the testnet verification. FindLabs is releasing forensic data that includes transaction hashes and the attacker's Ethereum wallet address.