Connect with us
Active Currencies 16226
Market Cap $3,558,812,759,131.90
Bitcoin Share 54.33%
24h Market Cap Change $0.65

Unsiwap [UNI] rocked by sandwich attack, $25M stolen: Investigations show…

2min Read
Unsiwap [UNI] rocked by sandwich attack, $25M stolen: Investigations show...

Share this article

  • Uniswap’s liquidity pool suffered an attack amounting to a $25 million loss.
  • Investigation showed that a validator could be involved.

Uniswap [UNI] has become the latest casualty of exploits in the cryptocurrency industry. The attack was on the protocol’s Liquidity Pool (LP) and ended in the perpetrators carting away $25.2 million. A smart contract developer, who pseudonymously goes by Punk3155 on Twitter, alerted the community about the issue.


Realistic or not, here’s UNI’s market cap in BTC’s terms


Validator gone rogue?

The developer who monitored every step of the activity noted that it was likely the handwork of crook validators who joined the protocol 18 days back. He pointed out,

“Looks like a well-planned attack. becoming a validator 18 days ago, prepared the tokens 16 days ago.”

Blockchain security platform PeckShield Alert also chimed in on the cause and perpetrators. Through the investigation, the firm was able to locate where the stolen funds were transferred, with PeckShield noting that eight addresses that emerged from the KuCoin exchange were involved, and the funds were stored in three of them.

Further scrutiny of the event revealed that it was a sandwich attack. Sandwich attacks occur when atrocious traders look for a pending transaction within a network and manipulate the order of transactions in the block.

In this instance, the eight addresses were able to exploit the Uniswap exposure and capitalized on it. In addition, Uniswap could have been an easy target since it uses a price curve based on liquid demand and supply.

Loophole detected but blames on no none

PeckShield also explained without laying blame that there was a broken bot action from the Miner Extractable Value (MEV). The MEV is described as the value that miners can obtain from the order of transactions during block production. And this helped in granting access to hackers. The tweet by the blockchain firm read,

“Our analysis shows that the victim txs were replaced by the bot-exploiting transactions, which already included the reverse swap to take profits.”

This attack represented one of the few notable ones the crypto ecosystem has experienced in 2023. Unlike last year when such occurrences were rampant, there seems to have been some calm.


How much are 1,10,100 UNIs worth today?


Meanwhile, Lookonchain was able to provide more information about the incident. According to him, the asset carted ways included 5.3 million USD Coin [USDC], 1.7 million MakerDAO [DAI], some Tether [USDT], Wrapped Bitcoin [WBTC], and Wrapped Ether [WETH].

An occurrence like this reflects the reality of the loopholes still present in the DeFi ecosystem. As such, there might be a need for better security infrastructure. However, Uniswap has not commented on the issue at the time of writing.

Share

Victor Olanrewaju is a full-time journalist at AMBCrypto. Settled in Lagos, his fascination with blockchain technology and the cryptocurrency market arose out of his love of freedom and everything free. As a Nigerian, Victor understands the impact unfounded financial restrictions have on a population. He sees Bitcoin and cryptos as a way to circumvent these obstacles, as a tool for value creation despite all the setbacks. A graduate in Physics, Victor previously worked as a Senior Marketer at Melange Technologies. Before that, he dealt with crypto-marketers on a regular basis in his capacity as Copywriter at Ventrix Media. At AMBCrypto, Victor’s focus is on assessing the real effectiveness of both on-chain and off-chain developments on a project and its community sentiment.
Read the best crypto stories of the day in less than 5 minutes
Subscribe to get it daily in your inbox.
Please check the format of your first name and/or email address.

Thank you for subscribing to Unhashed.