Eldel Finance has suffered a significant security breach resulting in a loss of approximately $350,000, according to a SlowMist alert. The attack exploited a vulnerability in the price source's latestAnswer() function, which reads from the ERC4626 vault's convertToAssets(). This allowed the attacker to manipulate the price by transferring donated assets directly, leveraging a flash loan and donation attack to alter the oracle price.
The attacker successfully extracted funds from Eldel Finance and some reserves from the Aave Pool. The attacker's address has been identified as 0x58428161bb55c14a413945f06cbdec157f411c76. The compromised contracts include the price source and the ERC4626 vault, highlighting a critical flaw in the system's asset balance handling.
Eldel Finance Loses $350,000 in Flash Loan Attack
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.
