Attention, blockchain enthusiastsđą! According to news on July 31, DeFi public product JPEG'd stated on Twitter that the pETH-ETH curve pool was under attackđ±. But donât worry, the treasury contract that allows borrowing NFT is still safe and operating normallyđ. NFT and treasury funds are also safe! Additionally, JPEG'd contracts have not been hacked and are safe.
Golden Finance reports show that Beosin's Beosin EagleEye security risk monitoring platform detected that JPEG'd suffered an attack, resulting in a loss of at least approximately US$10 million. After analysis, the cause of the attack is reentrancy. When the attacker calls the remove_liquidity function to remove liquidity, he adds liquidity by re-entering the add_liquidity function. Since the balance is updated before re-entering the add_liquidity function, an error occurs in the price calculation.
What do you think of this? Welcome to share your opinions in the comment area! đŹ
