Hackers Attacked Uniswap Via Fake Airdrop

July 12, 2022July 12, 2022 Colin Digits 0 Comments DigitsAgents, DigitsClub, ETH stolen, fake airdrop, phishing, Uniswap, Uniswap attack

The head of the Binance bitcoin exchange Changpeng Zhao reported that researchers at the site discovered a potential vulnerability in the third version of Uniswap (v3). However, it later turned out that it was a phishing attack on the user and not a protocol vulnerability.

Our threat intel detected a potential exploit on Uniswap V3 on the ETH blockchain. The hacker has stolen 4295 ETH so far, and they are being laundered through Tornado Cash. Can someone notify @Uniswap? We can help. Thankshttps://t.co/OV3g7ayf77
— CZ 🔶 Binance (@cz_binance) July 11, 2022

Zhao’s report said the attacker took 4,295 ETH ($4.6 million at the time of writing) out of the protocol and sent it to a Tornado Cash mixer.

PeckShield said there was an attack on the liquidity provider (LP).

Here is the approve tx. So it is not an exploit on @Uniswap. Instead someone with the UniswapV3 Liquidity Positions got phished to approve on their positions. @cz_binance https://t.co/atwbLoh7J5 https://t.co/LwQQDZZHTs
— PeckShield Inc. (@peckshield) July 11, 2022

One of the first to report on the phishing campaign was security specialist Harry Denly. He noted that attackers sent malicious tokens under the guise of an airdrop from Uniswap to more than 70,000 addresses.

⚠️ As of block 151,223,32, there has been 73,399 address that have been sent a malicious token to target their assets, under the false impression of a $UNI airdrop based on their LP's

Activity started ~2H ago
0xcf39b7793512f03f2893c16459fd72e65d2ed00c

cc: @Uniswap @etherscan pic.twitter.com/5W51AikFuV
— harry.eth 🦊💙 (whg.eth) (@sniko_) July 11, 2022

Victims interested in the tokens are redirected to the fraudulent site. Subsequently, the hackers steal the funds.

The number of affected users and the total amount of damage are not yet known.

Uniswap protocol creator Hayden Adams confirmed that it was a phishing campaign. He advised not to click on links that might be malicious.

This was a phishing attack that resulted in some LP NFTs being taken from individuals who approved malicious transactions

Totally separate from the protocol

A good reminder to protect yourself from phishing and not click on malicious links https://t.co/aj3Zh8UKqF
— hayden.eth 🦄 (@haydenzadams) July 11, 2022

Changpeng Zhao said he had contacted the Uniswap team and confirmed that the protocol was safe.

Connected with the @uniswap team. The protocol is safe.

The attack looks like from a phishing attack. Both teams responded quickly. All good. Sorry for the alarm.

Learn to protect yourself from phishing. Don't click on links. 🙏 pic.twitter.com/FIXebz3iBC
— CZ 🔶 Binance (@cz_binance) July 11, 2022

DigitsBlog

Hackers Attacked Uniswap Via Fake Airdrop

Leave a Reply Cancel reply