According to Odaily, PeckShield has reported on X platform that Onyx appears to be a victim of a known precision issue in the forked CompoundV2 codebase. This vulnerability has been exploited by attackers, resulting in the theft of funds including 4.1 million VUSD, 7.35 million XCN, 5,000 DAI, 0.23 WBTC, and 50,000 USDT.
The precision issue in the CompoundV2 codebase has been a known problem, and it seems that Onyx did not address this vulnerability in their forked version. The attackers took advantage of this oversight, leading to significant financial losses for the platform. The stolen assets include a variety of cryptocurrencies, highlighting the broad impact of the exploit.
This incident underscores the importance of thoroughly auditing and securing code, especially when forking from existing projects. The financial losses suffered by Onyx serve as a stark reminder of the potential risks involved in the DeFi space. Ensuring the integrity and security of codebases is crucial to prevent such exploits and protect user funds.