CoinVoice recently learned that Ethereum Layer 2 protocol Loopring posted on social media: “A few hours ago, some Loopring smart wallets suffered security vulnerabilities. The attack specifically targeted wallets with only one Guardian, especially those using Loopring’s official Guardian. The hacker initiated a recovery process, impersonating the wallet owner to reset ownership and withdraw assets.
The attack successfully compromised Loopring’s 2FA service, allowing hackers to impersonate wallet owners and obtain recovery approval from official guardians. The attackers then transferred assets out of the affected wallets.
We are actively working with Mist security experts to determine how our 2FA service was compromised. To protect our users, we have temporarily suspended Guardian-related and 2FA-related operations. Following this move, the attack has ceased.
Protocol is working with law enforcement and professional security teams to track down the attacker. We will continue to provide updates as the investigation progresses." [Original link]
