Crypto

$50 million HXA token movement is connected to a KyberSwap exploiter

Externally owned accounts (EOAs), which are currently identified as the top holders of HXA tokens, dispersed the funds obtained by the KyberSwap exploiter, according to blockchain security firm Cyvers. The native utility token of the Herencia Artifex NFT project, HXA, was found to have moved $50 million and was connected to the KyberSwap exploiter, according to blockchain security firm Cyvers.

Via the “transfer from function,” the Ethereum address of the KyberSwap exploiter’s address obtained these tokens.

The “transfer from” feature is frequently utilised by users of decentralised applications (DApps). The term pertains to a system that enables a sender to transfer tokens from an owner’s balance to a third-party address. On the other hand, security issues may arise from misuse or flaws in how these features are implemented

According to Cyvers, the security breech is associated with a possible vulnerability in the Multicall function, which is a component of the Thirdweb libraries that are used in the smart contract for the HXA token. In order to fully comprehend the scope and ramifications of the exploit, it has put forth this theory in its report and invites interested parties to take part in the inquiry.

The funds obtained by the KyberSwap exploiter, according to the Cyvers team, were distributed among a number of externally owned accounts (EOAs), which are currently known to be the leading holders of HXA tokens.

HXA token deposits and withdrawals have been temporarily suspended by cryptocurrency exchange MEXC. However, the exchange claims that the unusual on-chain operation of HXA is what caused the halt, not security concerns about the hack. Another twist in the story is that investors and stakeholders are currently unable to access official information and updates on the HXA coin’s official website, hxacoin.io. No justification for the w

The decentralised KyberSwap exchange lost roughly $46 million in cryptocurrency assets to hackers last month.

Exit mobile version