Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
“Makina Finance” suffered a Flash Loan hacker attack on January 20. The attacker exploited a pricing vulnerability within the Curve aggregator, and MEV bots helped it make quick withdrawals, resulting in a loss of approximately US$4.13 million.
According to the security report, the attack targeted the “Dialectic USD/USDC Stableswap” complex through price manipulation.
The attacker first borrowed 280 million USDC as an instant loan, and then used 170 million USDC to influence the “MachineShareOracle” on which the mining pool relies for pricing.
He then moved 110 million USDC through the pool, withdrawing funds estimated to be worth around $5 million.
In the process, MEV (from address 0xa6c2) “preempted” the transaction chain, resulting in approximately 1,299 ETH being withdrawn from the pool.
The money was later transferred to two addresses: one holding approximately $3.3 million and the other holding approximately $880,000.
“Makina Finance” confirmed that it had received early reports of incidents related to the DUSD pool on “Curve” and pointed out that the problem was limited to the positions of the DUSD liquidity provider on Curve, and there was no indication that other assets were affected.
It also confirmed the security of the underlying assets within the Protocol and initiated a preventive security mode on all systems, while advising liquidity providers in the DUSD complex to temporarily withdraw funds until the situation becomes clearer.
Also read:
Portugal takes action against Polymarket, giving 48 hours to leave the country: details
Binance delists 23 trading pairs on January 20: What should altcoin traders know?
