KyberSwap DEX exploited for $46 million, TVL tanks 68%

    2023.11.23 | exchangesranking | 104onlookers

    Around $46 million in various crypto assets has seemingly been drained from the decentralized KyberSwap exchange in the latest decentralized finance exploit.

    On Nov. 23, the Kyber Network team alerted its users stating in an X (Twitter) post that KyberSwap Elastic “has experienced a security incident.”

    It advised users to withdraw their funds as a precaution and added it was investigating the situation.

    Blockchain sleuths highlighted the impacted and exploiter wallet addresses, which were still recently active.

    According to Debank data, around $46 million has been pilfered in the attack, including roughly $20 million in wrapped Ether (wETH), $7 million in wrapped Lido-staked Ether (wstETH), and $4 million in Arbitrum (ARB).

    The funds were split across multiple chains, including Arbitrum, Optimism, Ethereum, Polygon, and Base.

    In an X post, blockchain sleuth “Spreek” said he was “fairly sure this is NOT an approval-related issue and is only related to the TVL held in the Kyber pools themselves.”

    The attacker has also left an on-chain message for protocol developers and DAO members, saying “negotiations will start in a few hours when I am fully rested.”

    Related: KyberSwap announces potential vulnerability, tells LPs to withdraw ASAP

    DefiLlama data shows KyberSwap’s total value locked (TVL) tanked by 68% over a few hours and almost $78 million left the protocol due to the hack and user withdrawals. Its TVL currently stands at $27 million, down from its 2023 peak of $134 million.

    A chart of KyberSwap’s total value locked. Source: DefiLlama

    Kyber Network Crystal KNC token prices briefly dipped 7% as news of the exploit broke but have since recovered to trade at $0.74.

    The team identified a vulnerability in April, advising users to withdraw liquidity. However, no funds were lost in that incident.

    Magazine: Should crypto projects ever negotiate with hackers? Probably

    The content on this website comes from the Internet. Due to the inconvenience of proofreading the authenticity and accuracy of the copyright or content of some content, it may be temporarily impossible to confirm the authenticity and accuracy of the copyright or content. For copyright issues or other ssues caused by this, please Call or email this site. It will be deleted or changed immediately after verification.